Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 9 years ago.
Improve this question
I have pointed the A record for the domain www.fitnaturally.co.uk (domain has been in use for a while) to my server IP (79.170.44.156). I did this 8 hours ago and still nothings happened. From my experience this process doesn't normally take any longer than 4 hours.
After doing a DNS Propagation check at http://www.whatsmydns.net/#A/www.fitnaturally.co.uk/
I have discovered that the correct IP is in some locations but in others it is still the old A Record ip (91.208.99.12). When i keep checking whatsmydns the IP address for each location keep changing back to the old IP also. For example London, UK (BT Global) was 79.170.44.156 but it has now changed back to (91.208.99.12).
If i do a DNS Prop check for http://www.whatsmydns.net/#A/fitnaturally.co.uk/ all A records show 79.170.44.156. But the old website still loads and I cannot connect to the new server via ftp.fitnaturally.co.uk.
Can somebody suggest anything that I can try to get this working or suggest a reason why its taking so long?
Your DNS records have 1-day TTLs, so that's how long it can take for old data to clear out of caches.
$ dig www.fitnaturally.co.uk a #ns1.tsohost.co.uk +norec
; <<>> DiG 9.6-ESV-R4-P3 <<>> www.fitnaturally.co.uk a #ns1.tsohost.co.uk +norec
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 7116
;; flags: qr aa; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;www.fitnaturally.co.uk. IN A
;; ANSWER SECTION:
www.fitnaturally.co.uk. 86400 IN A 79.170.44.156
86400 seconds is 1 day. I'm assuming you had the same TTL on the old record that this replaced.
If you want changes to propagate more quickly, you have to lower the TTL. Note that this has to be done BEFORE you make the change, since caches get the TTL when they look up the old data, and hold on to it for that long before checking again.
To answer the inevitable next question: no, there's no way to force caches to clear.
In some cases, DNS propagation may take even more than one day. Use Google DNS 8.8.8.8, which is usually fast, to see if the change was correctly applied.
Related
dig qq.com
; <<>> DiG 9.10.6 <<>> qq.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61180
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;qq.com. IN A
;; ANSWER SECTION:
qq.com. 95 IN A 183.3.226.35
qq.com. 95 IN A 203.205.254.157
qq.com. 95 IN A 123.151.137.18
qq.com. 95 IN A 61.129.7.47
;; Query time: 59 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Tue Dec 21 00:16:17 CST 2021
;; MSG SIZE rcvd: 99
in my example,the QUERY is 1.
I come from here
Query: 1: The number of queries in this session, which was one.
Is the explanation right?
If if it is right,can I have more queries at once,I saw all of examples in internet is always 1.
from https://datatracker.ietf.org/doc/html/rfc1035#section-4.1.1
QDCOUNT an unsigned 16 bit integer specifying the number of
entries in the question section
from https://datatracker.ietf.org/doc/html/rfc1035#section-4.1.2
The question section is used to carry the "question" in most queries,
i.e., the parameters that define what is being asked. The section
contains QDCOUNT (usually 1) entries
Query: 1: The number of queries in this session, which was one.
Is the explanation right?
Yes, dig displays there the number of entries for the 4 sections: QUERY, ANSWER, AUTHORITY, ADDITIONAL.
If if it is right,can I have more queries at once,I saw all of examples in internet is always 1.
You can't.
The format seems to allow for it, however things were never really specified so it is not possible today, for at least the simple reason that the answer has a single return code to note the success or failure of the request, so if the request has multiple queries, some successul, some not, how could the return code handle that?
I believe that is answered here: https://www.ietf.org/rfc/rfc1035.txt
OPCODE A four bit field that specifies kind of query in this
message. This value is set by the originator of a query
and copied into the response. The values are:
0 a standard query (QUERY)
1 an inverse query (IQUERY)
2 a server status request (STATUS)
3-15 reserved for future use
In the case of dig, I supposed we will either see QUERY or IQUERY as we are either retrieving the domain name that corresponds to Internet address or vice versa
I own a domain, and clearly its DNS resolution is fine, everywhere seems to point to the right server : https://dnschecker.org/#A/e-bis.fr
I created a wildcard for subdomains, and it seems like it only points to the right server in some random places in the world, changes randomly every once in a while (as in sometimes a server will say it resolves, and one hour later it won't anymore) : https://dnschecker.org/#A/whatever.e-bis.fr
At first I thought it was a propagation issue, but it's been a week now so clearly it's me messing up the config at some point.
Here's the zone file used by bind9 for this domain :
# IN SOA ns3032550.ip-91-121-79.eu. postmaster.e-bis.fr. (
2014070501 ; Serial
8H ; Refresh
30M ; Retry
4W ; Expire
8H ; Minimum TTL
)
IN NS ns3032550.ip-91-121-79.eu.
IN NS ns.kimsufi.com.
e-bis.fr. IN A 91.121.79.161
*.e-bis.fr. IN A 91.121.79.161
ownercheck IN TXT "28834a04"
I do a service bind9 reload every time I update it, so the only thing I can see is the issue being in the zone file. I'm terrible with them, so it wouldn't surprise me if it was a beginner mistake.
Thanks in advance to anyone who can help,
Éric B.
Turns out I had just forgotten to update the serial (I think?).
For anyone running into the same problem, it was this line 2014070501 ; Serial which I had not updated. Incrementing it then restarting the service is enough.
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
I have searched for possible solutions for days, but have had no luck at getting my SharePoint 2010 to return search results.
The search was working, but was only returning results from a subsite. I have gone through many blog posts and sites on setting up the search and still nothing. My last resort was to delete the search and reimplement it.
The search crawls just fine (no errors). Here are a couple of the blogs and sites I have tried (out of the many), but nothing seems to help.
http://social.msdn.microsoft.com/Forums/en-US/sharepoint2010setup/thread/688b5c52-f478-463b-bc00-debfd0c3be2b
http://sharepointgeorge.com/2010/configuring-enterprise-search-sharepoint-2010/
My setup is an intranet on a VM with SQL 2008 R2 (nothing out of the ordinary for the server, single farm). The search account has the rights to Full Read and is also included on all page permissions.
Here is a look at the log descriptions when a search is performed (no access denied errors). These results are all from the "Query Processor" category.
(w3wp.exe) PluggableSecurityTrimmerManager:SetSearchApplicationToUse: Set SearchApplication to 'Search Service Application'
(w3wp.exe) Resetting cookie: Old value = '', new value = 'nautilusRankDescending'
(mssearch.exe) 63239349-6356-4a02-96db-c40ffb223572-query-0: Query completed 109 ms, detailed time: Query stage execution ms times: 62 47 0 0 47 0 0 0 Query stage cpu ms times: 31 15 0 0 15 0 0 0 Query stage hit counts: 1 1 1 7 2 0 0 0 Cursor count: 13 Mapped page count: 16 Total index count: 1 [srequest.cxx:5526] d:\office\source\search\native\ytrip\tripoli\cifrmwrk\srequest.cxx
(w3wp.exe) Completed query execution with timings: total:140 dup:0 sec:0 join:0 ft:109 sql:31. Join Retry: 0. Security Trimming Retry: 0. Duplicate removal Retry: 0.
I am thoroughly baffled. Hopefully someone has had the same problem and can share how they fixed it.
One of the mistakes that we made is to use default Network Service account for the Application Pool. Make sure that you set up a separate domain\user account e.g. sp_search for search purpose.
Well, It has been quite the headache getting this to work. Below are some suggestions or check points to keep in mind. I hope they might help someone else out there.
if you have tried everything and you still don't have your search working delete the SSA and start over. I did this and then went through step by step
Set up a proper service/system account to handle the search.
Make sure that your application pool is started (at one time for some reason mine had stopped itself
I utilized this well documented article about setting up a search to rewalk myself through the process (after I deleted my initial search).
http://blog.concurrency.com/sharepoint/search-configuration-in-sharepoint-2010/
It has screen shots and useful tips for setting up scopes and crawl rules, etc.
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 9 years ago.
Improve this question
Problem Is: Some SFTP connections are failing in customer environment
But using sample code if i test with same server no connection is failed.
may be in customer envi many parallel sftp connection started at a time.
I Want to know what is the meaning of MaxStartups 10:30:60
In the above i know only 10 , which means maximum unauthenticated ssh connection allowed.
means at same time 12 sssh connection request comes 2 request fail and 10 success.
What is the mean of 30 and 60 ?
I Want to know what is the meaning of MaxStartups 10:30:60?
10: Number of unauthenticated connections before we start dropping
30: Percentage chance of dropping once we reach 10 (increases linearly for more than 10)
60: Maximum number of connections at which we start dropping everything
I'm trying to code my own DNS server, I'm reading through RFC1035 on DNS but I have a few queries:
1) I want my server to respond with a CNAME for a particular request, but no A records - can I do this? for example, receive request for 'server1.com', response 'CNAME server2.com', and then the client queries another DNS server to get the A record for 'server2.com'.
I've currently set the header to: '\x84\x00' such to say this is the authoritive server, but recurse is not possible. Is this right?
2) I want my server to respond with no records for any other request, such that the client then queries a different DNS server for the records. I've currently set header to '\x83\x03' such to signal a NAME ERROR reply code. Is this right? Then what do I follow this with, zeros in all the other fields, or just end the packet there? I don't want to respond with 'this name doesn't exist', rather 'I don't know this name, try someone else' - how do I do this?
Many Thanks :)
Sounds about right - in fact, CNAME with A records is incorrect (RFC1034 section 3.6.2: "If a CNAME RR is present at a node, no other data should be present").
This would be very unusual behaviour from an authoritative nameserver - I'd suggest rethinking it or at least testing with some real-life resolvers to ensure they do what you want. RCODE #3 ("name error" or NXDOMAIN) is positive confirmation that the name doesn't exist. This would cause resolvers to terminate resolution and possibly cache the nonexistence of the name, which doesn't sound like what you're after. If you want the resolver to query one of the other nameservers that was delegated to for that zone, I guess SERVFAIL (RCODE #2) is the most appropriate/likely to have the desired effect.
By the way, for debugging the exact format of your DNS packets I can highly recommend Wireshark for its decoding accuracy compared with pasting hex codes into Stack Overflow ;)
In the CNAME case, your (authoritative) server should just return the CNAME in the answer section unless it is also authoritative for the domain that the CNAME points to, in which case it should also include the result of following the CNAME.
For your second case you should return RCODE 5 ("REFUSED") - this is the preferred error that an authoritative server should give when asked a question for a domain for which it is not configured.
Following that, you still need to send the four 16-bit count fields and a copy of the question from the original request. In this case the four counts would be (1, 0, 0, 0) - one question, no answer, no ns records, no additional records.