Windows Server DNS Server does not Resolve some Names when Forwarders and DNSSEC Validation are configured.

P

Peter (FAB)

I enable DNSSEC validation and configure a forwarder 9.9.9.9 in DNS Manager of Windows 2022.In the DNS Manager I clear the DNS Cache of the Windows DNS Server.I execute the following:nslookup xwkm5qky.r.eu-west-1.awstrack.me. myservernameThe reply is always SERVFAIL.I can see in the network capture that the DNS server is trying to resolve a DS query forxwkm5qky.r.eu-west-1.awstrack.mer.eu-west-1.awstrack.mer.delegate.eu-west-1.awstrack.mecomamazonaws.comThe reply for amazonaws.com is NSEC3 indicating that this zone is not signed. It seems like the DNS server is assuming that the zone awstrack.

Continue reading...
 
You must log in or register to reply here.

Similar threads

W
DNSSec valdiation fails for some queries
Replies
0
Views
218
Windows Server 2016 RDS - Recht zum erstellen von
W
H
Host Server will not resolve external DNS or Ping external IP
Replies
0
Views
199
HILogics3
H
R
Data from active directory users and computers is not available from domain controller (Windows Server 2016 )
Replies
0
Views
466
Remoh_10
R
N
Windows Server 2016 DNS Server cannot resolve some external sites
Replies
0
Views
531
Najib br
N
R
WINDOWS UPDATE RELEASED CLU KB4497935 BUILD NO 18362.145 TO WINDOWS 10 1903 AND WINDOWS SERVER 1903 ON 29-05-2019
Replies
0
Views
243
RAJU.MSC.MATHEMATICS
R
Back
Top Bottom