Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
E
E
ericroot2014-10-14 10:08:34
Domain Name System
ericroot, 2014-10-14 10:08:34

Nxdomain and mismatch responses, how to distinguish and get rid of?

Hello.
It so happened that the responsibility for the DNS server fell on me.
There were a lot of questions, unfortunately, hands have not yet reached the DNS and BIND book.
I would like to clarify what nxdomain and mismath responses are and how they are reflected in the logs?
Here is the graph: prntscr.com/4w0j50
from 20:00 to 0:00
Mismatch peaks are visible on it
. And here is the log: pastebin.com/MZ8GS6vU
At peak times, similar requests are visible in the logs, requests for non-existent subdomains:

Oct 13 23:20:20 ns1 named[1893]: DNS format error from 193.227.240.39#53 resolving mnozhemizw.ru/AAAA for client 10.32.18.27#60499: Name . (SOA) not subdomain of zone mnozhemizw.ru -- invalid response
Oct 13 23:20:20 ns1 named[1893]: DNS format error from 193.227.240.40#53 resolving hopmisterv.ru/AAAA for client 10.32.18.27#59374: Name . (SOA) not subdomain of zone hopmisterv.ru -- invalid response
Oct 13 23:20:20 ns1 named[1893]: DNS format error from 193.227.240.39#53 resolving hopmisterv.ru/AAAA for client 10.32.18.27#59374: Name . (SOA) not subdomain of zone hopmisterv.ru -- invalid response

But there are also such requests in the logs that there is no answer:
Oct 13 20:00:02 ns1 named[1893]: DNS format error from 96.46.150.36#53 resolving p1024.papi.cddbp.net/AAAA for client 10.32.57.221#33795: reply has no answer
Oct 13 20:00:02 ns1 named[1893]: DNS format error from 208.72.242.170#53 resolving p1024.papi.cddbp.net/AAAA for client 10.32.57.221#33795: reply has no answer
Oct 13 20:00:02 ns1 named[1893]: DNS format error from 96.46.150.37#53 resolving p1024.papi.cddbp.net/AAAA for client 10.32.57.221#33795: reply has no answer
Oct 13 20:00:03 ns1 named[1893]: DNS format error from 209.10.41.188#53 resolving p1024.papi.cddbp.net/AAAA for client 10.32.57.221#33795: reply has no answer
Oct 13 20:00:03 ns1 named[1893]: DNS format error from 209.10.41.187#53 resolving p1024.papi.cddbp.net/AAAA for client 10.32.57.221#33795: reply has no answer
Oct 13 20:00:07 ns1 named[1893]: DNS format error from 96.46.150.37#53 resolving p1024.papi.cddbp.net/AAAA for client 10.32.57.221#33795: reply has no answer

Which one is nxdomain and which one is mismatch?
Please do not attack immediately with messages to Google. It works, I'm not banned there. Would love to get advice from those in the know.
Also, how dangerous and harmful is it for the DNS server? I believe these are viruses in clients.
More requests can be seen that ipv6 (AAAA), but there is no support for ipv6 on the DNS.
Server config, not configured by me:
pastebin.com/WXvgqzYR
ipv6 is disabled in sysconfig at startup.
bind version 9.9.5

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
L
Levelse2018-04-05 14:03:30
How to link NS and Domains to Vesta? 1Reply
Y
yeputons2012-07-09 20:45:54
DNS records NS and A: how to do it right? 1Reply
A
all via w2020-05-21 12:24:45
How to set up MX records for Yandex mail? 2Reply
S
Stepan St2018-04-13 14:24:21
CloudFlare+Github Pages+own domain, DNS setup on the CloudFlare side. How to correctly register DNS-s? 1Reply
L
lolrofl012021-08-02 15:26:08
How to make an additional ip the main one via ssh? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question