Hi dear community, first of all, I want to say that I tried to fix this issue by looking at other posts on this forums but without success, and I'm honestly a bit afraid of trying too many things and break the server configuration.
I'm running on Debian GNU/Linux 9.8, and my websites are managed by VestaCp.
My DNS configuration of Gifarte.com on Vesta :
@A 163.172.33.163
NS sd-93047.dedibox.fr
NS nssec.online.net
So here is the issue with the website I'm managing GifArte.com :
https://intodns.com/gifarte.com :
Code:
ERROR: One or more of your nameservers did not respond:
The ones that did not respond are:
62.210.16.8
https://mxtoolbox.com/SuperTool.aspx...&run=toolpage# :
Code:
At least one name server failed to respond in a timely manner
Failure detail: 62.210.16.8
https://toolbox.googleapps.com/apps/...dkim_selector=
Code:
Every name server must reply with exactly the same NS records.
help_outline
Help center article
62.210.16.8
<empty response>
163.172.33.163
nssec.online.net
sd-93047.dedibox.fr
I believe I should configure the 62.210.16.8 ip / nssec.online.net as a second DNS but how ? I have contacted my host and he told me that everything is fine on their side, they are just coppying my BIND9 configuration. So here is it :
/etc/bind/named.conf.options
Code:
options {
recursion no;
version "Not Disclosed";
directory "/var/cache/bind";
// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk. See http://www.kb.cert.org/vuls/id/800113
// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.
// forwarders {
// 0.0.0.0;
// };
//========================================================================
// If BIND logs error messages about the root key being expired,
// you will need to update your keys. See https://www.isc.org/bind-keys
//========================================================================
dnssec-validation auto;
auth-nxdomain no; # conform to RFC1035
//listen { 127.0.0.1; };
//listen-on-v6 { any; };
//listen-on { any; };
};
Also so commands I tried in order to see clearer things :
/etc/resolv.conf
Code:
# Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8)
# DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN
nameserver 62.210.16.6
nameserver 62.210.16.7
nameserver 62.210.16.8
search online.net
ifconfig
Code:
docker0: flags=4099<UP,BROADCAST,MULTICAST> mtu 1500
inet 172.17.0.1 netmask 255.255.0.0 broadcast 172.17.255.255
ether 02:42:61:af:60:45 txqueuelen 0 (Ethernet)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 0 bytes 0 (0.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 163.172.33.163 netmask 255.255.255.0 broadcast 163.172.33.255
inet6 fe80::ec4:7aff:fe57:6756 prefixlen 64 scopeid 0x20<link>
ether 0c:c4:7a:57:67:56 txqueuelen 1000 (Ethernet)
RX packets 1389600721 bytes 1233556925832 (1.1 TiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1090509115 bytes 627661799207 (584.5 GiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
device memory 0x7ac00000-7ac7ffff
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1 (Local Loopback)
RX packets 164845453 bytes 116994792566 (108.9 GiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 164845453 bytes 116994792566 (108.9 GiB)
named-checkconf
(doesnt return me anything wrong)
systemd-resolve --status
Code:
Global
DNS Servers: 62.210.16.6
62.210.16.7
DNS Domain: online.net
DNSSEC NTA: 10.in-addr.arpa
16.172.in-addr.arpa
168.192.in-addr.arpa
17.172.in-addr.arpa
18.172.in-addr.arpa
19.172.in-addr.arpa
20.172.in-addr.arpa
21.172.in-addr.arpa
22.172.in-addr.arpa
23.172.in-addr.arpa
24.172.in-addr.arpa
25.172.in-addr.arpa
26.172.in-addr.arpa
27.172.in-addr.arpa
28.172.in-addr.arpa
29.172.in-addr.arpa
30.172.in-addr.arpa
31.172.in-addr.arpa
corp
d.f.ip6.arpa
home
internal
intranet
lan
local
private
test
Link 4 (docker0)
Current Scopes: none
LLMNR setting: yes
MulticastDNS setting: no
DNSSEC setting: no
DNSSEC supported: no
Link 3 (eth1)
Current Scopes: none
LLMNR setting: yes
MulticastDNS setting: no
DNSSEC setting: no
DNSSEC supported: no
Link 2 (eth0)
Current Scopes: LLMNR/IPv4 LLMNR/IPv6
LLMNR setting: yes
MulticastDNS setting: no
DNSSEC setting: no
DNSSEC supported: no
Any help ? I'm sure it's something not too big. Thank you in advance !
