DNS 服务器对 dig 做出响应正常,但浏览器超时

tag-icon tag-icon domain-name-system bind timeout dig resolve
DNS 服务器对 dig 做出响应正常,但浏览器超时

我今天刚刚设置了一个 DNS 服务器,它正在响应远程挖掘(离线),但NOERROR同一台机器上的浏览器却超时了:ERR_CONNECTION_TIMED_OUT

## 编辑 ##我认为值得一提的是# curl mywebsite超时也是如此。

我的dig返回结果如下:(请记住 10.2.6.60 是 DNS 服务器,而 10.2.6.80 是 WEB 服务器)

# dig mywebsite.com 53

; <<>> DiG 9.10.3-P4-Ubuntu <<>> mywebsite.com 53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 36878
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;mywebsite.com.     IN  A

;; ANSWER SECTION:
mywebsite.com.  38399   IN  A   10.2.6.80

;; Query time: 119 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Fri Feb 10 15:52:16 PST 2017
;; MSG SIZE  rcvd: 61

;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46751
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;53.                IN  A

;; AUTHORITY SECTION:
.           63934   IN  SOA a.root-servers.net. nstld.verisign-grs.com. 2017021000 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 127.0.1.1#53(127.0.1.1)
;; WHEN: Fri Feb 10 15:52:16 PST 2017
;; MSG SIZE  rcvd: 106

在 DNS 服务器上,我的 tcpdump 读取以下内容:

#  sudo tcpdump -n -nn -tttt -i ens32 port 53

2017-02-10 17:52:16.885021 IP 74.125.80.81.40072 > 10.2.6.60.53: 15104 [1au] A? mywebsite.com. (56)
2017-02-10 17:52:16.885550 IP 10.2.6.60.53 > 74.125.80.81.40072: 15104*- 1/1/1 A 10.2.6.80 (95)

显然我的配置有问题?我运行了配置测试,没有错误。但为了以防万一,这是我的配置:

/etc/bind/named.conf.local

 zone "mywebsite.com" {
        type master;
        file "/var/lib/bind/mywebsite.com.hosts";
        };

zone "6.2.10.in-addr.arpa" {
  type master;
  file "/etc/bind/db.mywebsite.com";
 };

/var/lib/bind/mywebsite.com.hosts

$ttl 38400
mywebsite.com.       IN      SOA     ns1.mydnssite.com. mydnsemail.gmail.com. (
                        1486765992
                        10800
                        3600
                        604800
                        38400 )
mywebsite.com.       IN      NS      ns1.mydnssite.com.
mywebsite.com.       IN      A       10.2.6.80
www.mywebsite.com.   IN      A       10.2.6.80

etc/bind/db.mywebsite.com

$TTL    604800
@       IN      SOA     localhost. root.localhost. (
                              1         ; Serial
                         604800         ; Refresh
                          86400         ; Retry
                        2419200         ; Expire
                         604800 )       ; Negative Cache TTL
;
@       IN      NS      localhost.
1.0.0   IN      PTR     localhost.

有人能找到任何明显的错误来解释为什么它可以与远程一起工作dig,但浏览器超时?我最初以为是 UDP,但你可以在响应中清楚地看到事实dig并非如此。。我被难住了!

相关内容