[AusNOG] Strange DNS issue
Andrew Jones
aj at jonesy.com.au
Sun Oct 28 14:28:28 EST 2012
I don't have any secret knowledge of Telstra's DNS infrastructure, but
it looks to me like that server is anycast, in which case some nodes
might have updated, but not others.
A couple of traceroutes from here and the US (well, the last few hops):
11. bundle-ether15.ken39.sydney.telstra.net 0.0% 94 10.9
9.6 5.8 14.4 1.6
12. bundle-ether6.ken-core4.sydney.telstra.net 0.0% 94 16.9
13.1 6.2 19.5 3.5
13. lon-resolver.telstra.net 0.0% 94 5.3
7.0 5.0 9.1 0.9
10. tengige0-1-0-10.pad-gw1.sydney.telstra.net 0.0% 73 188.1
188.3 182.7 194.3 3.4
11. bundle-ether3.chw-core2.sydney.telstra.net 0.0% 73 188.7
192.2 186.7 198.3 3.5
12. lon-resolver.telstra.net 0.0% 73 185.4
185.4 185.2 185.5 0.1
-Jonesy
On 28.10.2012 13:59, Heinz N wrote:
>> Thanks Heinz. I lowered the refresh time yesterday and I've just
>> seriously increased
>> the serial. It has become a bit curiouser though. Telstra's
>> lon-resolver.telstra.net
>> appears to be returning the correct record when queried from a USA
>> server:
>> However, when I query the same server from my client's firewall
>> which is connected to
>> Bigpond ADSL, it fails:
>
> I suspect your local telstra ADSL service is going through some sort
> of transparent DNS proxy which has not updated yet. I also saw
> similar
> update delays (some clients could see the update, some couldn't). I
> would hate to run telstra's DNS. Apart from being attacked all the
> time and the massive load from normal users, there would also be
> issues syncing up servers and caches spread all over the place. From
> their perspective, I would do everything I could to limit redundant
> updates. With telstra, I have found that the only thing you can do is
> sit on your hands and wait for it to all come good :-)
>
> Regards,
> Heinz N
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
More information about the AusNOG
mailing list