Reply
Accepted Solution

DNS Configured on InfoBlox doesn't resolve a few domains.

DDoshi
Techie
Posts: 16
10814     1

Hello Folks,

This is my first thread to the community. Sorry if I am breaking any rules of the forum.

I have a query, thought to discuss with experts, I hope this is the right place to discuss the same.

Recently we noticed that both our internal and external DNS services hosted on
Infoblox appliances are not resolving some domain names. But at the same time, the
same domain name can be resolved using either Google DNS server or ISP DNS
server. Is there any reason for this?
Our Infoblox appliances are configured to send the DNS queries to Internet root hint servers. Any idea what could be the cause?


Thank you,

Darshan

What are the dns domains

NdeLeeuw
Techie
Posts: 16
10814     1

What are the dns domains youre trying to resolve is it a domain hosted on one of the infobloxes ?

Are you using DNS Firewall

GRoehl
Techie
Posts: 4
10814     1

Are you using DNS Firewall (RPZ)?

Answer

DDoshi
Techie
Posts: 16
10814     1

Hello Folks,

Sorry for the late reply.

Yes, the domains are hosted on InfoBlox. And No, they are not using DNS Firewall. Smiley Sad

Highlighted

Do you have a packet capture?

Adviser
Posts: 200
10814     1

Have you attempted to get a packet capture off of the Infoblox appliance or anywhere "north" of it to determine if there is something manipulating the response?  It would be odd for the Infoblox appliance to be able to resolve some, but not all, domains while external systems can do so successfully without something "in the middle" causing the issue".

I would also suggest checking a possible culprit...Some of the domains being looked up may have larger packets and if you do not have TCP port 53 open, that would definitely be an issue.  DNS does not use ONLY UDP port 53.  Both TCP and UDP are required from server to server.

In addition, you may want to make sure your firewall is not preventing EDNS0 from working as well.

 

Showing results for 
Search instead for 
Do you mean 

Recommended for You