[193462] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: [outages] ntp.org DNS lookups failing

daemon@ATHENA.MIT.EDU (Alarig Le Lay)
Wed Jan 18 15:39:07 2017

X-Original-To: nanog@nanog.org
Resent-From: Alarig Le Lay <alarig@swordarmor.fr>
Resent-To: nanog@nanog.org
Date: Wed, 18 Jan 2017 21:35:34 +0100
From: Alarig Le Lay <alarig@swordarmor.fr>
To: Gert Doering <gert@greenie.muc.de>
In-Reply-To: <20170118202523.GW78624@greenie.muc.de>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org


--wagk2casxswx3bfp
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Hi,

On Wed Jan 18 21:25:23 2017, Gert Doering via Outages wrote:
> Trying to query directly, ns1/ns2.ntp.org return SERVFAIL as well,
> and ns1/ns2.everett.org do not reply at all... so pure guesswork on
> my side says "the original set is broken / under attack / ..., so
> new servers have been added, but as long as the old NS records are
> still being cached, things keep failing".

I see the same behaviour:

alarig@pikachu ~ % dig -t NS ntp.org  =20

; <<>> DiG 9.11.0-P2 <<>> -t NS ntp.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 44422
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;ntp.org.			IN	NS

;; Query time: 52 msec
;; SERVER: 2a00:5884:8218::1#53(2a00:5884:8218::1)
;; WHEN: Wed Jan 18 21:28:08 CET 2017
;; MSG SIZE  rcvd: 36

alarig@pikachu ~ % ssh alarig@log.bzh=20
alarig@log:~$ sudo unbound-control flush_zone ntp.org
[sudo] password for alarig:=20
ok removed 8 rrsets, 0 messages and 0 key entries
^D
alarig@log:~$ d=C3=A9connexion
Connection to log.bzh closed.
alarig@pikachu ~ % dig -t NS ntp.org    =20

; <<>> DiG 9.11.0-P2 <<>> -t NS ntp.org
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 53621
;; flags: qr rd ra; QUERY: 1, ANSWER: 9, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;ntp.org.			IN	NS

;; ANSWER SECTION:
ntp.org.		3600	IN	NS	ns1.everett.org.
ntp.org.		3600	IN	NS	ns2.everett.org.
ntp.org.		3600	IN	NS	ns4.p20.dynect.net.
ntp.org.		3600	IN	NS	dns2.udel.edu.
ntp.org.		3600	IN	NS	anyns.pch.net.
ntp.org.		3600	IN	NS	dns1.udel.edu.
ntp.org.		3600	IN	NS	ns1.p20.dynect.net.
ntp.org.		3600	IN	NS	ns2.p20.dynect.net.
ntp.org.		3600	IN	NS	ns3.p20.dynect.net.

;; Query time: 178 msec
;; SERVER: 2a00:5884:8218::1#53(2a00:5884:8218::1)
;; WHEN: Wed Jan 18 21:31:51 CET 2017
;; MSG SIZE  rcvd: 236

--=20
alarig

--wagk2casxswx3bfp
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAEBCAAGBQJYf9GTAAoJEK84SsFrICuI5OcIAJoc0T2qKo79piJJClm8Wj7F
QtYEunGoSeAjqOPL7ISN7y3pX3xLq/IKNyDtRuaPGl9TXTfUMM09sNLMuBke82tX
1YEu4W4KeDYbbxlUNkLIYvDWzSaYqnHDgKnLsXneIrGgMCG5SrXqLOvtzq06jmpy
/0gdBslENmVj1wSkSwzlzhgMqfJ4AmuyAFRVeC8syDVOYVsSw+mWcc9EZXzqECMN
bNO+J7T7jjuImqdXQptYKSCUE5DZljfB6qA/WbV1uFtesd9olOKbDPZGoR09QuhW
wXIrLhkJM0l+tTDl4DlYdnk+MLTahBlg13uZ488O+szArbHjK9RACU1VR9DtrHM=
=UuWO
-----END PGP SIGNATURE-----

--wagk2casxswx3bfp--


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[193462] in North American Network Operators' Group

Re: [outages] ntp.org DNS lookups failing

daemon@ATHENA.MIT.EDU (Alarig Le Lay)Wed Jan 18 15:39:07 2017

daemon@ATHENA.MIT.EDU (Alarig Le Lay)
Wed Jan 18 15:39:07 2017