Soon, ns3.idefix.net will be going away ... / 2013-11-17

2013-11-17 Soon, ns3.idefix.net will be going away ... 5 years ago
Soon, ns3.idefix.net will be going away so I am working on changing the nameservers. My domains are registered through EPAG and they do offer secondary DNS service, but debugging it is a bit hard and the only way I know something is wrong is when the nameservers reply with failures. What is wrong is invisible and at the same time my domains are harder to resolve.

The theory is that when you want secondary nameservices with a visible primary nameserver you add that server as the first and the epag nameservers further in the record. First I had the problem that when I entered the nameservers
ns2.idefix.net
ns2.pir.net
dns1.epag.net
dns2.epag.net
In that order as nameservers, the epag system changes the order to:
ns2.pir.net
ns2.idefix.net
dns1.epag.net
dns2.epag.net
which in theory would try the zonetransfers from ns2.pir.net which is controlled by someone else who is probably now wondering where all the zonetransfer attempts are coming from.

I fixed the ordering problem by first submitting as nameservers
ns2.idefix.net
dns1.epag.net
dns2.epag.net
And then re-adding ns2.pir.net as the last.

But still there are problems with the nameservice. For idefix.net I entered the IP of ns2.idefix.net as 'hidden primary' in the hope of getting things right. The result at the moment is:
$ host -t soa idefix.net dns1.epag.net
Using domain server:
Name: dns1.epag.net
Address: 212.123.35.78#53
Aliases:

idefix.net has SOA record dns1.epag.net. postmaster.epag.net. 0 86400 1800
604800 180

$ host -t soa idefix.net dns1.epag.net
Using domain server:
Name: dns1.epag.net
Address: 217.76.102.142#53
Aliases:

idefix.net has SOA record ns2.idefix.net. koos.idefix.net. 2013111700 10800
1800 2419200 43200
(note the 2 different IPs for dns1.epag.net)
$ host -t soa idefix.net dns2.epag.net
Using domain server:
Name: dns2.epag.net
Address: 212.123.32.78#53
Aliases:

idefix.net has SOA record dns1.epag.net. postmaster.epag.net. 0 86400 1800
604800 180
So of the 5 nameservers for idefix.net (dns1.epag.net has 2 IPs) 2 are returning errors.

Update 2013-11-18: And I'm getting the kind of errors I really do not want to see:
$ host koos.idefix.net
Host koos.idefix.net not found: 3(NXDOMAIN)
And for other domains it doesn't work as well as it should either. Part of the EPAG nameservers have a problem with AAAA records.
$ host -t aaaa camp-wireless.com
camp-wireless.com has no AAAA record
$ host -t aaaa camp-wireless.com dns2.epag.net
Using domain server:
Name: dns2.epag.net
Address: 212.123.32.78#53
Aliases: 

camp-wireless.com has no AAAA record
$ host -t aaaa camp-wireless.com dns1.epag.net
Using domain server:
Name: dns1.epag.net
Address: 212.123.35.78#53
Aliases: 

camp-wireless.com has no AAAA record
Which is wrong:
$ host -t aaaa camp-wireless.com ns2.idefix.net
Using domain server:
Name: ns2.idefix.net
Address: 2001:980:14ca:42::694#53
Aliases: 

camp-wireless.com has IPv6 address 2001:980:14ca:42::694
For the important domains back to ns3.idefix.net and looking for a better secondary DNS solution.

Update 2013-11-19: So now ns3.idefix.net points at a different server and everything is back to working order again.

Update 2013-11-25: Answer from epag: the setup I wanted isn't supported. Either one nameserver of your own (hidden or published) and the epag nameservers or you provide all nameservers.

Tags:

, reachable as koos+website@idefix.net. PGP encrypted e-mail preferred.

PGP key 5BA9 368B E6F3 34E4 local copy PGP key 5BA9 368B E6F3 34E4 via keyservers pgp key statistics for 0x5BA9368BE6F334E4 Koos van den Hout
RSS
Other webprojects: Camp Wireless, wireless Internet access at campsites, The Virtual Bookcase, book reviews
This page generated in 0.003916 seconds.