Linode Forum :: All invalid domains resolve to hostname?!

Linode Forum https://forum.linode.com/

All invalid domains resolve to hostname?! https://forum.linode.com/viewtopic.php?f=19&t=4563	Page 1 of 1

Author:

saman007uk [ Fri Aug 28, 2009 9:18 am ]

Post subject:

All invalid domains resolve to hostname?!

Hi guys,

Since yesterday, all invalid domains names seem to suddenly resolve to the server hostname. For example, consider "3321esddasd223a.com" - which does not exist.

Dig confirms that it doesn't exist:

Code:

; <<>> DiG 9.5.1-P3 <<>> 3321esddasd223a.com
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56761
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;3321esddasd223a.com.           IN      A

;; AUTHORITY SECTION:
com.                    898     IN      SOA     a.gtld-servers.net. nstld.verisign-grs.com. 1251465248 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 207.192.69.4#53(207.192.69.4)
;; WHEN: Fri Aug 28 14:14:20 2009
;; MSG SIZE  rcvd: 110

Yet, when I try to ping it just resoles to the server hostname:

Code:

root@server:~# ping 3321esddasd223a.com
PING 3321esddasd223a.com.saman-gh.co.uk (97.107.132.48) 56(84) bytes of data.
64 bytes from server.saman-gh.co.uk (97.107.132.48): icmp_seq=1 ttl=64 time=0.037 ms
64 bytes from server.saman-gh.co.uk (97.107.132.48): icmp_seq=2 ttl=64 time=0.058 ms
64 bytes from server.saman-gh.co.uk (97.107.132.48): icmp_seq=3 ttl=64 time=0.053 ms
64 bytes from server.saman-gh.co.uk (97.107.132.48): icmp_seq=4 ttl=64 time=0.060 ms
64 bytes from server.saman-gh.co.uk (97.107.132.48): icmp_seq=5 ttl=64 time=0.061 ms

I don't have a name server installed, and the contents of /etc/resolv.conf and /etc/hosts look fine. Any ideas?!

Author:	Alucard [ Fri Aug 28, 2009 10:09 am ]
Post subject:
Post /etc/hosts ?

Author:	jsr [ Fri Aug 28, 2009 10:10 am ]
Post subject:
Take a look at your ping command, it is not resolving 3321esddasd223a.com, it is translating it to 3321esddasd223a.com.saman-gh.co.uk. I'm guessing you have your resolv.conf setup with a domain of "saman-gh.co.uk". I can see that you have a wildcard DNS for *.saman-gh.co.uk. So your server is checking <anything>.saman-gh.co.uk for a result and since that is a wildcard, it finds it.

Author:	mwalling [ Fri Aug 28, 2009 10:25 am ]
Post subject:
You have a search line in your resolv.conf

Author:

saman007uk [ Fri Aug 28, 2009 10:28 am ]

Post subject:

Thanks for the replies,

jsr wrote:

I'm guessing you have your resolv.conf setup with a domain of "saman-gh.co.uk". I can see that you have a wildcard DNS for *.saman-gh.co.uk. So your server is checking <anything>.saman-gh.co.uk for a result and since that is a wildcard, it finds it.

unfortunately, nope:

Code:

root@server:~# cat /etc/resolv.conf
nameserver 207.192.69.4
nameserver 207.192.69.5

/etc/hosts:

Code:

127.0.0.1 localhost
97.107.132.48 server.saman-gh.co.uk
# The following lines are desirable for IPv6 capable hosts
::1 ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
ff02::3 ip6-allhosts

keep the suggestions coming ....

Author:	jsr [ Fri Aug 28, 2009 11:01 am ]
Post subject:
From the resolv.conf man page: Code: If no domain entry is present, the domain is determined from the local host name returned by gethostname(); the domain part is taken to be everything after the first '.'. Finally, if the host name does not contain a domain part, the root domain is assumed. So your server is most likely setting a default search domain of "saman-gh.co.uk" even if you aren't specifying it. One of the easy fixes would be to just get rid of the wildcard DNS, if you are not using it. You could also make your hostname "server" instead of "server.saman-gh.co.uk".

Author:	saman007uk [ Fri Aug 28, 2009 11:16 am ]
Post subject:
Ah, many thanks for the explanation.

Page 1 of 1	All times are UTC-04:00
Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/