Answer the question
In order to leave comments, you need to log in
V
V
Vitaly2017-06-21 11:55:00
Vitaly, 2017-06-21 11:55:00
How to check on Mikrotik what dns servers it uses?
All the best! I ran into the problem that on one of my providers a certain resource (let's call it mysite.com) is not available by domain name, that is, it is available by ip (it pings normally), but it doesn’t work by name, mikrotika’s response to the ping command:
invalid value for argument address:
invalid value of mac-address, mac address required
invalid value for argument ipv6-address
while resolving ip-address: could not get answer from dns serverAlthough on the other provider everything is fine. I set up my own DNS on Mikrotik, that is, Google's ones (I also tried Google's ones), I don't use the provider's dns.
DNS settings:
> /ip dns print
servers: 8.8.8.8,8.8.4.4
dynamic-servers:
allow-remote-requests: no
max-udp-packet-size: 4096
query-server-timeout: 2s
query-total-timeout: 10s
max-concurrent-queries: 100
max-concurrent-tcp-sessions: 20
cache-size: 2048KiB
cache-max-ttl: 1w
cache-used: 18KiB
> /ip dhcp-server network print
# ADDRESS GATEWAY DNS-SERVER WINS-SERVER DOMAIN
0 ;;; default configuration
192.168.88.0/24 192.168.88.1 8.8.8.8
8.8.4.4The option to kill statically is not suitable, since mysite.com does not lie on one ip.
Maybe someone faced something similar?
How to check which dns server uses Mikrotik and devices connected to it, and what is the actual problem?
3 answer(s)
@CityCat4
@Maxim_Q
Your DNS does not work on Mikrotik at all. you need to do allow-remote-requests: yes
Then you need to register the IP address of Mikrotik in the system as DNS.
Only then will it work and everything will be fine (provided that you configured the Firewall correctly).
And in the menu: IP -> DHCP Client -> for eth1, go to the settings and uncheck the boxes: Use Peer DNS.
This is to avoid using DNS from the provider.
@Ziptar
/ip dns print
Check firewall.
Mikrotik should be able to send a request (output chain) to the 53rd udp port (dst-port) towards the provider, and, accordingly, receive a response (input chain) from the 53rd udp port (src-port) on the same side .
C
CityCat4, 2017-06-21 @CityCat4
Regardless of whether the provider's DNS is used or not, if mysite.com is on the ILV lists, the provider will ban it. For example, by intercepting DNS requests on port 53. If they contain a request to resolve mysite.com, such packets can stupidly drop. No resolution - no connection.
M
Maxim_Q, 2019-04-10 @Maxim_Q
allow-remote-requests: no
Your DNS does not work on Mikrotik at all. you need to do allow-remote-requests: yes
Then you need to register the IP address of Mikrotik in the system as DNS.
Only then will it work and everything will be fine (provided that you configured the Firewall correctly).
And in the menu: IP -> DHCP Client -> for eth1, go to the settings and uncheck the boxes: Use Peer DNS.
This is to avoid using DNS from the provider.
Z
Ziptar, 2017-06-21 @Ziptar
How to check which dns servers Mikrotik is using
/ip dns print
Check firewall.
Mikrotik should be able to send a request (output chain) to the 53rd udp port (dst-port) towards the provider, and, accordingly, receive a response (input chain) from the 53rd udp port (src-port) on the same side .
Similar questions
Z
M
A
J
W
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question