Introducing SOC Insights for BloxOne Threat Defense: Boost your SOC efficiency with AI-driven insights to eliminate manual work and accelerate investigation and response times. Read the blog announcement here.

NIOS DNS DHCP IPAM

Reply

SOA Query Answer Section returns NS servers

New Member
Posts: 1
1239     0

Hi, Is there a way for Infoblox to return in the Additional Section just one A record for the actual SOA?

 

Here is what I get with the Authoritative Microsoft DNS:

Infoblox > dig @1.1.1.1 example.com soa

; <<>> DiG 9.10.2-ECS-M3 <<>> +noedns @172.21.136.10 example.com soa
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39348
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1


;; QUESTION SECTION:
;example.com. IN SOA

;; ANSWER SECTION:
example.com. 600 IN SOA server1.example.com. hostmaster.example.com. 8037153 900 600 86400 600

;; ADDITIONAL SECTION:
server1.example.com. 600 IN A 1.1.1.2

 

 

When I query Infoblox, I didn't get any addtional section:

 

Infoblox > dig @2.2.2.1 example.com soa

; <<>> DiG 9.10.2-ECS-M3 <<>> +noedns @172.16.6.140 example.com soa
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23726
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;example.com. IN SOA

;; ANSWER SECTION:
example.com. 514 IN SOA server1.example.com. hostmaster.example.com. 8037159 900 600 86400 600

 

 

When I disabled "Return minimal response"

Infoblox > dig @172.21.190.80 example.com ns

; <<>> DiG 9.10.2-ECS-M3 <<>> +noedns @172.21.190.80 example.com ns
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62839
;; flags: qr rd ra; QUERY: 1, ANSWER: 8, AUTHORITY: 0, ADDITIONAL: 8

;; QUESTION SECTION:
;example.com. IN NS

;; ANSWER SECTION:
example.com. 583 IN NS server1.example.com.
example.com. 583 IN NS server2.example.com.
example.com. 583 IN NS server3.example.com.
example.com. 583 IN NS server4.example.com.


;; ADDITIONAL SECTION:

Enter <return> for next page or q<return> to cancel the command.

server1.example.com. 547 IN A 1.1.1.2
server2.example.com. 547 IN A 1.1.1.3
server3.example.com. 547 IN A 1.1.1.4
server4.example.com. 547 IN A 1.1.1.5



 

This is causing some issues with our VPN clients joining Active directory because it does not have an address of an SOA server.

Thanks in advance for the assistance.

Showing results for 
Search instead for 
Did you mean: 

Recommended for You