[Dnsmasq-discuss] can't resolve irc.freenode.org

Jon Nelson jnelson+dnsmasq at jamponi.net
Thu Apr 16 15:42:00 BST 2009 

I ran into a wacky problem today, and it *seems* to be dnsmasq's fault.

Assume (at least) 2 machines:  a firewall (running dnsmasq) and any other
machine in the network (pointed at the firewall for name resolution).

On the firewall, 'host -v irc.freenode.org' results thusly:

Trying "irc.freenode.org"

;; Truncated, retrying in TCP
mode.
Trying "irc.freenode.org"

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id:
25071
;; flags: qr tc rd ra; QUERY: 1, ANSWER: 24, AUTHORITY: 2, ADDITIONAL:
0

;; QUESTION SECTION:
;irc.freenode.org.              IN      A

;; ANSWER SECTION:
irc.freenode.org.       40      IN      CNAME   chat.freenode.org.
chat.freenode.org.      40      IN      CNAME   chat.freenode.net.
chat.freenode.net.      29      IN      A       193.84.18.40
chat.freenode.net.      29      IN      A       207.158.1.150
chat.freenode.net.      29      IN      A       207.182.240.74
chat.freenode.net.      29      IN      A       208.71.169.36
chat.freenode.net.      29      IN      A       212.117.163.190
chat.freenode.net.      29      IN      A       213.92.8.4
chat.freenode.net.      29      IN      A       213.161.196.11
chat.freenode.net.      29      IN      A       213.219.249.66
chat.freenode.net.      29      IN      A       213.232.93.3
chat.freenode.net.      29      IN      A       216.155.130.130
chat.freenode.net.      29      IN      A       216.165.191.52
chat.freenode.net.      29      IN      A       82.96.64.4
chat.freenode.net.      29      IN      A       86.65.39.15
chat.freenode.net.      29      IN      A       89.16.176.16
chat.freenode.net.      29      IN      A       91.199.167.22
chat.freenode.net.      29      IN      A       92.61.33.10
chat.freenode.net.      29      IN      A       128.237.157.136
chat.freenode.net.      29      IN      A       130.237.188.200
chat.freenode.net.      29      IN      A       130.239.18.172
chat.freenode.net.      29      IN      A       140.211.166.3
chat.freenode.net.      29      IN      A       140.211.166.4
chat.freenode.net.      29      IN      A       154.35.200.44

;; AUTHORITY SECTION:
freenode.net.           75094   IN      NS      auth1.ns.sargasso.net.
freenode.net.           75094   IN      NS      ns4086.freenode.net.

Received 489 bytes from 216.165.129.158#53 in 33 ms
Trying "chat.freenode.net"
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 22563
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;chat.freenode.net.             IN      AAAA

;; AUTHORITY SECTION:
freenode.net.           3257    IN      SOA     freenode.net.
root.freenode.net. 2006073158 3600 36002419200 3600

Received 76 bytes from 216.165.129.158#53 in 31 ms
Trying "chat.freenode.net"
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39800
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;chat.freenode.net.             IN      MX

;; AUTHORITY SECTION:
freenode.net.           3257    IN      SOA     freenode.net.
root.freenode.net. 2006073158 3600 36002419200 3600

Received 76 bytes from 216.165.129.158#53 in 32 ms




OK? Now, on any machine which uses dnsmasq for resolution:

Trying "irc.freenode.org"
;; Truncated, retrying in TCP mode.
Trying "irc.freenode.org"
Received 34 bytes from 192.168.1.1#53 in 65 ms
Trying "irc.freenode.org.jamponi.site"
Host irc.freenode.org not found: 3(NXDOMAIN)
Received 47 bytes from 192.168.1.1#53 in 1 ms

What's going wrong?


The logs from the firewall with log-queries turned on:

Apr 16 09:40:28 goblin dnsmasq[7750]: query[A] irc.freenode.org from
192.168.1.2
Apr 16 09:40:28 goblin dnsmasq[7750]: forwarded irc.freenode.org to
216.165.129.158
Apr 16 09:40:28 goblin dnsmasq[7750]: reply irc.freenode.org is <CNAME>
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.org is <CNAME>
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is 86.65.39.15
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
91.199.167.22
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
213.232.93.3
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is 82.96.64.4
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
193.84.18.40
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
130.239.18.172
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
213.219.249.66
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
130.237.188.200
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
140.211.166.4
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
89.16.176.16
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
140.211.166.3
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
154.35.200.44
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
207.182.240.74
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
207.158.1.150
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
216.155.130.130
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
213.161.196.11
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is 92.61.33.10
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
128.237.157.136
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
208.71.169.36
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
212.117.163.190
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is
216.165.191.52
Apr 16 09:40:28 goblin dnsmasq[7750]: reply chat.freenode.net is 213.92.8.4

-- 
Jon
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20090416/77952db6/attachment.htm

More information about the Dnsmasq-discuss mailing list