Host <system> returns SERVFAIL

anon42188109 · 9 May 2020 20:56

[root@ipfire ~]# host amd
amd.lan has address 10.0.0.42
Host amd.lan not found: 2(SERVFAIL)
Host amd.lan not found: 2(SERVFAIL)
[root@ipfire ~]#

Can someone help me why I see those 2 lines? thx

anon2595834 · 10 May 2020 16:54

Hi pavlos,

i can confirm your problem. The same applies to me.

anon42188109 · 10 May 2020 17:19

Since last night, I can NOT resolve any of my local systems by name.
The first line shows resolved (my domain is lan) but then I get two lines, SERVFAIL or NXDOMAIN
My setup is core 144, DNS 8.8.8.8 UDP/Standard. Check DNS server button gives me green OK.
It is a red/green setup with no addons or other services running.

anon42188109 · 13 May 2020 17:58

I did a fresh install of core 144 in my env, still see the same SERVFAIL.

ms · 14 May 2020 08:11

Could you please post logs?

anon42188109 · 14 May 2020 19:04

Not sure which logs you’d like … what do I grep for in var/log/messages?

Core 144, red/green, cable modem public ip 68.x.x.x – [ipfire] 10.0.0.1 – client fx (10.0.0.44), there are a few more clients all getting 10.0.0.* No addons, no proxies. On console,

[root@ipfire ~]# host fx
fx.lan has address 10.0.0.44
Host fx.lan not found: 2(SERVFAIL)
Host fx.lan not found: 2(SERVFAIL)

why do I get the second/third line? fx.lan was found

[root@ipfire ~]# dig fx +short

[root@ipfire ~]# dig fx.lan +short
10.0.0.44

pmueller · 15 May 2020 08:38

Hi,

Not sure which logs you’d like … what do I grep for in var/log/messages?

we need all lines in /var/log/messages containing unbound.

Thanks, and best regards,
Peter Müller

jon · 15 May 2020 19:09

example:

grep unbound /var/log/messages

anon42188109 · 15 May 2020 20:03

There are 3462 lines, you don’t want me to post all of them here.

grep unbound /var/log/messages > mylog 
grep token mylog | wc -l to get lines

Of those, 2694 are “validation failure” lines … this question was posted in an older thread

https://community.ipfire.org/t/validation-failure/1748

There are 523 “SERVFAIL” lines, sample below:

May 15 10:18:35 ipfire unbound: [1380:0] error: SERVFAIL <www.services.online-banking.us.hsbc.com.gslb-us1.hsbc.com. AAAA IN>: all the configured stub or forward servers failed, at zone .
May 15 10:18:35 ipfire unbound: [1380:0] error: SERVFAIL <www.us.hsbc.com.gslb-us1.hsbc.com. AAAA IN>: all the configured stub or forward servers failed, at zone .
May 15 10:18:36 ipfire unbound: [1380:0] error: SERVFAIL <mcm-prod.us.hsbc.com.gslb-us1.hsbc.com. AAAA IN>: all the configured stub or forward servers failed, at zone .

anon42188109 · 16 May 2020 16:42

Used ncat to send mylog to termbin with line numbers … https://l.termbin.com/40yg