Operating system | Ubuntu Linux 20.04.5 |
---|---|
Webmin version | 2.001 |
Virtualmin version | 7.2-1 Pro |
Kernel and CPU | Linux 5.4.0-126-generic on x86_64 |
I have lost one of my subdomains! Everything was working fine then suddenly it dropped off the internet and now I cannot find it.
I have two subdomains, one was set up as a virtual server in its own right (ns1) the other was set up as a subserver (15rsb).
Ns1 has a Master Zone of its own in Bind but 15rsb shares a Master Zone with its parent zone xsxtc, all of which was generated automatically by virtualmin.
Everything I would expect to see in a master zone has been reproduced in the parent zone for 15rsb and as I say, it was working fine but suddenly has stopped.
I also have a second server running virtualmin on which is a single virtual server that is another subdomain of the same parent, ns2. No matter what I have tried, ns2 does not appear to work properly as a name server.
Ns1 and ns2 both show up properly on dnschecker.org referencing their correct IP addresses. 15rsb does not. However zonemaster.net manages to find all three and reports a string of errors for each.
The ns1 errors (3) are RCODE refusal and dnskey issues with ns2.
The ns2 errors (2) are SOA response and another RCODE issue but this time with ns1.
The 15rsb errors (9) are all listed below.
2022-10-01 15:13 GMT+02:00
BASIC ERROR Nameserver ns2.xsxtc.uk/212.227.198.34 did not return NS records. RCODE was REFUSED.
DELEGATION ERROR Child does not list enough (0) nameservers (). Lower limit set to 2.
DELEGATION ERROR Empty NOERROR response to SOA query was received from ns1.xsxtc.uk/77.68.100.23.
DELEGATION ERROR Parent has nameserver(s) not listed at the child (ns1.xsxtc.uk; ns2.xsxtc.uk).
DELEGATION ERROR None of the nameservers listed at the parent are listed at the child.
DNSSEC ERROR Nameserver ns1.xsxtc.uk/77.68.100.23 responded with no DNSKEY record(s).
DNSSEC ERROR Nameserver ns2.xsxtc.uk/212.227.198.34 responded with no DNSKEY record(s).
DNSSEC ERROR Nameserver ns1.xsxtc.uk/77.68.100.23 responded with no DNSKEY record(s).
DNSSEC ERROR Nameserver ns2.xsxtc.uk/212.227.198.34 responded with no DNSKEY record(s).
The delegation statements confuse me as all three subdomains have A records in the parent zone and both nameservers are listed against the parent and the subdomain 15rsb although no nameservers are listed for the ns1 or ns2 subdomains.
The master zone for ns1 lists both nameservers and A records (but not and A record for ns2).
The master zone for (the remote server) ns2 lists both nameservers and A records (including an A record for ns1).
Consequently the delegation statements seem not to be taking account of all the listings in the zones. They must be working as there are no other nameservers are linked to these domains and they are visible across the internet.
All the records have been autogenerated by Virtualmin.
Using the bind configuration checker I had to manually change some entries and also delete and reinstall the DNSSEC key on the parent zone to clear one of the errors. I think it might have been at this point that the subdomain 15rsb was lost although it is not easy to be sure as it takes time to propagate both success and failure on the DNS network.
The Bind config checking tool is now reporting the configuration as fine on both servers, the main and the remote. I have stopped and started Bind and also rebooted the servers all to no avail.
I am only a novice at DNS but everything looks OK. I have waited 48 hours before raising this post but the issues have not changed so now I am looking for help please. I have obviously done something foolish but just cannot see what it is.
Can someone offer advice? Do I need to post more information?
Geoff