[MaraDNS list] Fwd: MaraDNS doesn't respond to queries from the bind addr subnet
Dave Owens
dave at teamunify.com
Fri Jun 14 09:40:15 EDT 2013
Hi Sam,
Yesterday I ran captures both on our DNS node (it indeed sends the reply)
and on the other side of our edge router (no reply is seen). Our colo
provider says they aren't doing any deep packet inspection around this...
I'll be on the phone with Cisco today, I fear... just very strange that
certain A records with 1918 addresses work well. Thank you for all your
help.
Dave Owens
TeamUnify, LLC
On Thu, Jun 13, 2013 at 7:04 PM, Sam Trenholme <maradns at gmail.com> wrote:
> > I am able to get the A record returned when I query the server from the
> > local subnet. I am not able to get the A record returned when I query
> the
> > server remotely.
>
> If you run Wireshark or another network analyzer against the server
> running MaraDNS, do you see the DNS packet which doesn’t get a reply
> hit the MaraDNS server?
>
> Do you see MaraDNS sending a reply to the DNS packet?
>
> I have a sense this issue isn't with Mara; but Wireshark will help us
> confirm things. DNS replies with RFC1918 addresses in them are
> considered a bad thing, so there could very well be a firewall
> dropping the packets.
>
> http://wireshark.org/
>
> - Sam
>
More information about the list
mailing list