Hi Andy
Thanks for your detailed response.
On 25/06/2024 00:59, Andy Smith via
BitFolk Users wrote:
ns1.aquitaine.richardskingdom.net refuses my quesries:
...
If you do intend for the Internet to be able to query it then you
need to allow that by whatever means mailinabox offers. Perhaps it
is giving REFUSED because the zone name is wrong inside it? I don't
know. Does it just automatically generate its reverse zone name?
All the name server configuration has been done by mail-in-a-box. I
have only told it to add some extra A / AAAA records for a subdomain
on a different IP.
I have no idea why the software would set itself up as a name
server, provide instructions for configuring DNS to use it as a name
server, throw an error in its control panel if it is not configured
as a name server, and then refuse queries.
Probably I have done something wrong but I can't work out what.
Given that it configures a name server, and expects that server to
be used, I also have no idea why it doesn't configure reverse DNS
for itself in the way it requires - but it appears not to do so.
Some posts on the mail-in-a-box forums imply the solution is to edit
the running config manually to add the required PTR records - and
just remember to do that again every time you update the software.
Again when querying for the exact record you require, I get REFUSED
from your actual server. Making the query against the other servers
will never work because you have not asked us to provide secondary
service for the zone `7.3.0.f.1.f.1.0.8.a.b.0.1.0.0.2.ip6.arpa`. Do
you want me to set that up now in the same manner as your other
domain?
That sounds like a good idea. Yes, please :)
If the only error here is that you are refusing all queries on your
nameserver then possibly us adding the zone as secondary will appear
to work because BitFolk's servers will start to answer the query.
However even then, 25% of the time queries will encounter some delay
as they pick your server that is refusing queries and have to retry
one of the others.
Understood. I think I will try the mail-in-a-box forums next to see
why the name server might be refusing requests.
Cheers
Richard.