Re: [PLUG] eMail Delivery/Domain Name Problem

Seems to me you have some DNS inconsistencies. Whois reports your nameservers for chescoliberty.org as:

Name Server:DNS2.NERDWORLD.ORG

Name Server:DNS1.NERDWORLD.ORG

In your data for chescoliberty.org (which I was able to transfer from 71.224.6.96) you have the following:

;; ADDITIONAL SECTION:

DNS1.NerdWorld.org. 7200 IN A 71.224.6.96

DNS2.NerdWorld.org. 7200 IN A 71.224.6.96

HOWEVER, if you follow the DNS delegation for these nerworld.org hosts from the .org TLD, it looks like:

darren:~ darren$ dig org ns

; <<>> DiG 9.6.0-APPLE-P2 <<>> org ns

;; global options: +cmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58961

;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:

;org. IN NS

;; ANSWER SECTION:

org. 86400 IN NS a0.org.afilias-nst.info.

org. 86400 IN NS a2.org.afilias-nst.info.

org. 86400 IN NS b0.org.afilias-nst.org.

org. 86400 IN NS b2.org.afilias-nst.org.

org. 86400 IN NS c0.org.afilias-nst.info.

org. 86400 IN NS d0.org.afilias-nst.org.

;; Query time: 37 msec

;; SERVER: 10.0.20.1#53(10.0.20.1)

;; WHEN: Thu Jan 6 21:45:36 2011

;; MSG SIZE rcvd: 159

Choosing one of these nameservers at random, querying them for your zone's nameservers, we get:

darren:~ darren$ dig @b0.org.afilias-nst.org chescoliberty.org ns

; <<>> DiG 9.6.0-APPLE-P2 <<>> @b0.org.afilias-nst.org chescoliberty.org ns

; (1 server found)

;; global options: +cmd

;; Got answer:

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27591

;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 2, ADDITIONAL: 2

;; WARNING: recursion requested but not available

;; QUESTION SECTION:

;chescoliberty.org. IN NS

;; AUTHORITY SECTION:

chescoliberty.org. 86400 IN NS dns1.nerdworld.org.

chescoliberty.org. 86400 IN NS dns2.nerdworld.org.

;; ADDITIONAL SECTION:

dns1.nerdworld.org. 86400 IN A 71.224.4.252

dns2.nerdworld.org. 86400 IN A 206.99.145.1

;; Query time: 102 msec

;; SERVER: 199.19.54.1#53(199.19.54.1)

;; WHEN: Thu Jan 6 21:46:08 2011

;; MSG SIZE rcvd: 115

The problem is in the dns1.nerdworld.org and dns2 records above in bold ... these are called glue records and it could be you have changed them recently and they have not propagated yet, or it could be you need to fix your DNS for nerdworld.org, because they don't match the information we saw earlier, and they also don't respond:

darren:~ darren$ dig @206.99.145.1 chescoliberty.org ns

; <<>> DiG 9.6.0-APPLE-P2 <<>> @206.99.145.1 chescoliberty.org ns

; (1 server found)

;; global options: +cmd

;; connection timed out; no servers could be reached

darren:~ darren$ dig @71.224.4.252 chescoliberty.org ns

; <<>> DiG 9.6.0-APPLE-P2 <<>> @71.224.4.252 chescoliberty.org ns

; (1 server found)

;; global options: +cmd

;; connection timed out; no servers could be reached

darren:~ darren$

Hope that helps!

-d

On Jan 6, 2011, at 7:42 PM, Casey Bralla wrote:

I've got a weird eMail delivery problem that I cannot figure out. Could
somebody please offer some asistance?

I have begun hosting a local political organization (www.ChescoLiberty.org) on
my web server. I also host the domain name on my DNS server, and the eMail on
an eMail server.   Everything works... almost.

__SOME__ people (notably yahoo) cannot send eMail to anyone at this domain.
It times out with a "domain not known" error:

Hi. This is the qmail-send program at yahoo.com.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

<Casey@ChescoLiberty.org>:
Sorry, I couldn't find any host by that name. (#4.1.2)
I'm not going to try again; this message has been in the queue too long.

Oddly, I can send eMails to this same address from work.

I've done diagnostics on the setup and everything seems fine. This the same
system I use from multiple other domains, and have never had a problem.

For reference, here is my bind9 file for this domain:

;
; DNS master file for ChescoLiberty.org
;

$ORIGIN ChescoLiberty.org.
$TTL 2h
@                       SOA             DNS1.NerdWorld.org.
Webmaster.ChescoLiberty.org. (
                                       2010121302      ; Serial Number
                                       2h              ; Refresh Time
                                       1h              ; Retry Time
                                       2d              ; Expire Time
                                       2h              ; Negative Cache Time
                                       )
@                       MX              10 Mail.NerdWorld.org.
@                       NS              DNS1.NerdWorld.org.
@                       NS              DNS2.NerdWorld.org.
@                       IN A            71.224.6.96

Mail                    IN A            71.224.6.96

DNS1                    IN A            71.224.6.96
DNS2                    IN A            71.224.6.96
DNS3                    IN A            71.224.6.96
DNS4                    IN A            71.224.6.96

www                     IN A            71.224.6.96
FTP                     IN A            71.224.6.96

ChescoLiberty.org.      IN TXT          "Chester County Liberty Alliance"

Anybody have any ideas why some people can see the domain and some can't?

--

Casey Bralla
Chief Nerd in Residence
The NerdWorld Organisation
http://www.NerdWorld.org
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion --   http://lists.phillylinux.org/mailman/listinfo/plug