From owner-freebsd-ports@FreeBSD.ORG Sat May 12 16:14:46 2012 Return-Path: Delivered-To: ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2DEBA106566B for ; Sat, 12 May 2012 16:14:46 +0000 (UTC) (envelope-from kob6558@gmail.com) Received: from mail-pz0-f54.google.com (mail-pz0-f54.google.com [209.85.210.54]) by mx1.freebsd.org (Postfix) with ESMTP id 0055D8FC08 for ; Sat, 12 May 2012 16:14:45 +0000 (UTC) Received: by dadv36 with SMTP id v36so4889359dad.13 for ; Sat, 12 May 2012 09:14:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=ZW1Mx4asR+WwxW9QdbTD8prJD3ZWh3gFiQ4BLvJlTuY=; b=QW69XC0fqHXpbSeAWOa+PKCWsLkXVpNoqPODf/N707AhPXXutNO8clVP2xpoyCmdfA FT3BYFsXTL6i5rXpfMk2qe8zUA9GnCfif2Ac4Vz6BFDLJpiq63Z1SFVLouIl/WgwPwpJ 8vHv1fIDr43/tp7Iiaf2RD+V6hyvV4DbGZX8os0M5QQ5eCf/Bqn7cr1iNqKpK2N11sNv 19Fr5D8xDqKB5WV1qkjD9OVanFFE+/SvDP4vA3/LoP9SoimxV9wdZbqZS7dJJne9PIOc RiWkmJZ4+tQ1vaUf3dWrCjTDLlmrbxCVzqvACSZc3gi84EcYeyiTtsrDqV5C6v5hzr/Z onrA== MIME-Version: 1.0 Received: by 10.68.138.135 with SMTP id qq7mr6291118pbb.124.1336839285478; Sat, 12 May 2012 09:14:45 -0700 (PDT) Received: by 10.68.200.66 with HTTP; Sat, 12 May 2012 09:14:45 -0700 (PDT) In-Reply-To: <4FAE8897.4060305@eskk.nu> References: <4FADDEE9.1060707@freebsd.org> <4FAE0AEF.9060704@eskk.nu> <4FAE0B8C.7010509@freebsd.org> <4FAE0FC1.1000106@eskk.nu> <4FAE3CA7.5080206@freebsd.org> <4FAE54BA.4060308@eskk.nu> <20120512151936.1fd3b626@gumby.homeunix.com> <4FAE8897.4060305@eskk.nu> Date: Sat, 12 May 2012 09:14:45 -0700 Message-ID: From: Kevin Oberman To: Leslie Jensen Content-Type: text/plain; charset=ISO-8859-1 Cc: ports@freebsd.org, RW Subject: Re: Please test geodns.portsnap.freebsd.org X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 12 May 2012 16:14:46 -0000 On Sat, May 12, 2012 at 8:58 AM, Leslie Jensen wrote: > > > 2012-05-12 16:19, RW skrev: > >> On Sat, 12 May 2012 14:16:58 +0200 >> Leslie Jensen wrote: >> >>> >>> >>> 2012-05-12 12:34, Colin Percival skrev: >>>> >>>> On 05/12/12 00:22, Leslie Jensen wrote: >>>>> >>>>> host -t srv _http._tcp.geodns.portsnap.freebsd.org >>>>> ;; Truncated, retrying in TCP mode. >>>>> ;; Connection to 172.17.0.1#53(172.17.0.1) for >>>>> _http._tcp.geodns.portsnap.freebsd.org failed: connection refused. >>>> >>>> >>>> Ok, you have a broken recursive DNS server configuration. >>>> >>>> I'll have A records as a fallback for situations like this where >>>> SRV can't be used. >>>> >>> >>> What exactly does that mean? The IP-address is my home router that >>> acts as a caching DNS for my network. The router in turn uses my >>> ISP's DNS. >>> >>> So if there is a configuration issue I'll be willing to drop a letter >>> to my ISP in order to get it fixed. >> >> >> Probably your router doesn't support SRV records, try putting external >> servers in resolv.conf. >> _______________________________________________ >> freebsd-ports@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-ports >> To unsubscribe, send any mail to "freebsd-ports-unsubscribe@freebsd.org" > > > > Well I had to read up on configuring dhclient.conf > > After adding > > prepend domain-name-servers y.y.y.y, x.x.x.x; > > To my /etc/dhclient.conf > > I now get the following and it looks to me as it works :-) > > > > host -t srv _http._tcp.geodns.portsnap.freebsd.org > ;; Truncated, retrying in TCP mode. > _http._tcp.geodns.portsnap.freebsd.org has SRV record 4 10 80 > ap-southeast-1.portsnap.freebsd.org. > _http._tcp.geodns.portsnap.freebsd.org has SRV record 1 10 80 > geodns-1.portsnap.freebsd.org. > _http._tcp.geodns.portsnap.freebsd.org has SRV record 2 10 80 > geodns-2.portsnap.freebsd.org. > _http._tcp.geodns.portsnap.freebsd.org has SRV record 3 10 80 > geodns-3.portsnap.freebsd.org. > _http._tcp.geodns.portsnap.freebsd.org has SRV record 4 10 80 > isc.portsnap.freebsd.org. > _http._tcp.geodns.portsnap.freebsd.org has SRV record 4 10 80 > your-org.portsnap.freebsd.org. > _http._tcp.geodns.portsnap.freebsd.org has SRV record 4 10 80 > ec2-eu-west-1.portsnap.freebsd.org. > _http._tcp.geodns.portsnap.freebsd.org has SRV record 4 10 80 > ec2-sa-east-1.portsnap.freebsd.org. > _http._tcp.geodns.portsnap.freebsd.org has SRV record 4 10 80 > ap-northeast-1.portsnap.freebsd.org. Warning! You will have more problems down the road. The real issue is that a firewall (or router ACL) is blocking port 53/tcp. This is distressingly common and will result in DNS issues more and more often. By default, DNS attempts to use UDP (53/udp) for DNS lookups. If the response is too big to fit into a UDP packet, the operation will fall back to using TCP, but many sites follow bad advice of blocking 53/tcp, so the lookup fails. This has been a growing problem as DNS responses are getting longer due to things like this, IPv6, and DNSSEC. Please contact whoever is responsible for your router/firewall and ask that 53/tcp be allowed. Otherwise, more and more things will break. -- R. Kevin Oberman, Network Engineer E-mail: kob6558@gmail.com