Open youradds opened 3 years ago
OK so here is an example:
nordoff-robbins.org.uk
Comes back ok with a normal "dig":
dig nordoff-robbins.org.uk +short | paste -d " " - - - 84.207.248.85
Yet with massdns, it doesn't include it in the results. However, when I try again with just that one domain, it works:
Response: | Success: | Total:
OK: | 1 (100.00%) | 1 (100.00%)
NXDOMAIN: | 0 ( 0.00%) | 0 ( 0.00%)
SERVFAIL: | 0 ( 0.00%) | 0 ( 0.00%)
REFUSED: | 0 ( 0.00%) | 0 ( 0.00%)
FORMERR: | 0 ( 0.00%) | 0 ( 0.00%)
nordoff-robbins.org.uk. A 84.207.248.85
Am I doing something wrong? Is there a "retry" rate, where it will try x number of times?
I would recommend you confirm that the resolvers you're using are in-fact public recursive resolvers. All of them. When troubleshooting, use --predictable
to cause the same resolvers to be used for the same host for each session
nordoff-robbins.org.uk
to receive too much load, as the requests will ultimately end up there unless your resolvers have them cachedThe latter case should work itself out after a few sessions, especially if your resolvers.lst is small and/or you're using --predictable
as the question will have the answers cached the second time around
I can tell you with certainty the problem is not with massdns. My suggestions for you:
--predictable
whenever you're trying to identify issuesAlso, as a general tip, when using dig
to reproduce something, you should explicitly specify a recursive resolver on the commandline. You should also explicitly specify the question type. The default for massdns is A
. I know dig
will return A records, but it will do other things depending on the response (or lackthereof)
For an accurate reproduction of the above, you should use this, it will test each one of your resolvers
for r in $(cat resolvers.lst); do
dig -t A +short nordoff-robbins.org.uk +short @$r
done
Using this short loop alone may reveal that you have a bad resolver in your list
Of course, it will not reproduce the load that you're producing when using massdns
Hi,
Thanks for this cool program :) I was trying to do a "dig" for each domain manually, and it was bloomin slow. So I'm using:
./massdns/bin/massdns -r massdns/lists/resolvers.txt -o S -t A massdns/domains-to-do.txt > results.txt
Which finishes with:
My file has 239,005 domains in - but I see quite a lot of SERVEFAIL and NXDOMAIN errors (over 9k of them). What do those mean? I'm going to run a test to compare what is outputted, vs what I'm passing in - but the outputted results.txt file is only 229,641 lines, which makes me think quite a few are missing - especially when a lot of domains have multiple lines:
Thanks in advance!
Andy