Problems with DNS and IPv6 on Server 2012 and 2016DNS CNAME Record windows 2003 R2 server by IP addressMS DNS lookup issueIPv6 on Server 2008R2 kills DNS resolution? Internet slowdowns?DNS lookup takes 10 plus secondsWindows Server 2012 DNS forwardingBind Server issue: Can not nslookup from client when DNS Master is down, but still can connect to InternetDecisions about DNS on IPv6Server 2016, DNS only responds when requested over private IP AddressCannot add a domain controller to an existing 2012 R2 domainDNS server cannot resolve addresses itself

What are the differences between credential stuffing and password spraying?

Where can I go to avoid planes overhead?

If Earth is tilted, why is Polaris always above the same spot?

Number of seconds in 6 weeks

For a benzene shown in a skeletal structure, what does a substituent to the center of the ring mean?

Airbnb - host wants to reduce rooms, can we get refund?

How did Arya get her dagger back from Sansa?

What do you call the "hold on" music that plays when you wait on the phone?

Why was the battle set up *outside* Winterfell?

What was the state of the German rail system in 1944?

Can the 歳 counter be used for architecture, furniture etc to tell its age?

Point of the the Dothraki's attack in GoT S8E3?

Does a wine bottle stopper require tevillah?

Is it cheaper to drop cargo than to land it?

Enumerate Derangements

Would "lab meat" be able to feed a much larger global population

Can Ghost kill White Walkers or Wights?

Do I really need diodes to receive MIDI?

How to improve/restore vintage Peugeot bike, or is it even worth it?

Virus Detected - Please execute anti-virus code

My ID is expired, can I fly to the Bahamas with my passport?

SFDX Can query Package Installation Status, can we?

How can I close a gap between my fence and my neighbor's that's on his side of the property line?

Help to understand a simple example of clist in expl3



Problems with DNS and IPv6 on Server 2012 and 2016


DNS CNAME Record windows 2003 R2 server by IP addressMS DNS lookup issueIPv6 on Server 2008R2 kills DNS resolution? Internet slowdowns?DNS lookup takes 10 plus secondsWindows Server 2012 DNS forwardingBind Server issue: Can not nslookup from client when DNS Master is down, but still can connect to InternetDecisions about DNS on IPv6Server 2016, DNS only responds when requested over private IP AddressCannot add a domain controller to an existing 2012 R2 domainDNS server cannot resolve addresses itself






.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;








0















I manage hundreds of servers for many customers. Most are SMB segment, having 1 to 3 servers per customer max.
In past few weeks I get more and more frequent DNS errors on random domain controllers, from 2008R2 to 2016. Simply put, DC does not resolve DNS anymore. This happened on some dozen of servers lately, and I haven't figured out the cause yet.



Weird is, that for example, on same premises, 2 VMs, 2 domain controllers for 2 different companies, each with 15 users. Same ISP, same router, same switch.
1 DC works OK, no problems, while 2nd DC cannot resolve DNS anymore:



On server 1 problem local DNS... but nslookup to 8.8.8.8 works!?:



C:UsersAdministrator>nslookup
Default Server: UnKnown
Address: ::1

> www.google.com
Server: UnKnown
Address: ::1

DNS request timed out.
 timeout was 2 seconds.
DNS request timed out.
 timeout was 2 seconds.
*** Request to UnKnown timed-out
> server 8.8.8.8
Default Server: google-public-dns-a.google.com
Address: 8.8.8.8

> www.google.com
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Non-authoritative answer:
Name: www.google.com
Addresses: 2a00:1450:4001:81c::2004
 172.217.16.68

>


On server 2 no problems:



C:UsersAdministrator>nslookup www.google.com
Server: localhost
Address: ::1

Non-authoritative answer:
Name: www.google.com
Addresses: 2a00:1450:4006:802::2004
 216.58.206.132


Both are AD DC in single-domain setup, DNS configured with public forwarders, DC DNS points to itself only. IPv4 and IPv6 enabled on servers, but IPv6 is disabled on router. Did not touch any of those servers for past few months.



Did MS change anything?
I do not remember DNS ever before switched to IPv6....why did it switch now? And why it works on one server and not on the other, still they are both the same (actually, same deployment, just configured for 2 different domains).






domain-name-system active-directory ipv6 windows-server-2016 ipv4







share|improve this question
























  • The switch to IPv6 began with Server 2008/Vista. It's not new at all. Since then, localhost has been ::1 and used IPv6 unless the system was explicitly misconfigured by the admin.

    – Michael Hampton
    Jul 25 '18 at 21:50












  • DC DNS points to itself only - If there are two DC/DNS servers then this configuration is incorrect. Each DC/DNS server should use it's "partner" DC/DNS server for primary DNS, itself for secondary DNS, and 127.0.0.1 for tertiary DNS.

    – joeqwerty
    Jul 26 '18 at 1:01











  • @joequerty - both servers are standalone single DC's, each for it's own domain.

    – Labsy
    Jul 26 '18 at 6:16

















0















I manage hundreds of servers for many customers. Most are SMB segment, having 1 to 3 servers per customer max.
In past few weeks I get more and more frequent DNS errors on random domain controllers, from 2008R2 to 2016. Simply put, DC does not resolve DNS anymore. This happened on some dozen of servers lately, and I haven't figured out the cause yet.



Weird is, that for example, on same premises, 2 VMs, 2 domain controllers for 2 different companies, each with 15 users. Same ISP, same router, same switch.
1 DC works OK, no problems, while 2nd DC cannot resolve DNS anymore:



On server 1 problem local DNS... but nslookup to 8.8.8.8 works!?:



C:UsersAdministrator>nslookup
Default Server: UnKnown
Address: ::1

> www.google.com
Server: UnKnown
Address: ::1

DNS request timed out.
 timeout was 2 seconds.
DNS request timed out.
 timeout was 2 seconds.
*** Request to UnKnown timed-out
> server 8.8.8.8
Default Server: google-public-dns-a.google.com
Address: 8.8.8.8

> www.google.com
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Non-authoritative answer:
Name: www.google.com
Addresses: 2a00:1450:4001:81c::2004
 172.217.16.68

>


On server 2 no problems:



C:UsersAdministrator>nslookup www.google.com
Server: localhost
Address: ::1

Non-authoritative answer:
Name: www.google.com
Addresses: 2a00:1450:4006:802::2004
 216.58.206.132


Both are AD DC in single-domain setup, DNS configured with public forwarders, DC DNS points to itself only. IPv4 and IPv6 enabled on servers, but IPv6 is disabled on router. Did not touch any of those servers for past few months.



Did MS change anything?
I do not remember DNS ever before switched to IPv6....why did it switch now? And why it works on one server and not on the other, still they are both the same (actually, same deployment, just configured for 2 different domains).






domain-name-system active-directory ipv6 windows-server-2016 ipv4







share|improve this question
























  • The switch to IPv6 began with Server 2008/Vista. It's not new at all. Since then, localhost has been ::1 and used IPv6 unless the system was explicitly misconfigured by the admin.

    – Michael Hampton
    Jul 25 '18 at 21:50












  • DC DNS points to itself only - If there are two DC/DNS servers then this configuration is incorrect. Each DC/DNS server should use it's "partner" DC/DNS server for primary DNS, itself for secondary DNS, and 127.0.0.1 for tertiary DNS.

    – joeqwerty
    Jul 26 '18 at 1:01











  • @joequerty - both servers are standalone single DC's, each for it's own domain.

    – Labsy
    Jul 26 '18 at 6:16













0












0








0








I manage hundreds of servers for many customers. Most are SMB segment, having 1 to 3 servers per customer max.
In past few weeks I get more and more frequent DNS errors on random domain controllers, from 2008R2 to 2016. Simply put, DC does not resolve DNS anymore. This happened on some dozen of servers lately, and I haven't figured out the cause yet.



Weird is, that for example, on same premises, 2 VMs, 2 domain controllers for 2 different companies, each with 15 users. Same ISP, same router, same switch.
1 DC works OK, no problems, while 2nd DC cannot resolve DNS anymore:



On server 1 problem local DNS... but nslookup to 8.8.8.8 works!?:



C:UsersAdministrator>nslookup
Default Server: UnKnown
Address: ::1

> www.google.com
Server: UnKnown
Address: ::1

DNS request timed out.
 timeout was 2 seconds.
DNS request timed out.
 timeout was 2 seconds.
*** Request to UnKnown timed-out
> server 8.8.8.8
Default Server: google-public-dns-a.google.com
Address: 8.8.8.8

> www.google.com
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Non-authoritative answer:
Name: www.google.com
Addresses: 2a00:1450:4001:81c::2004
 172.217.16.68

>


On server 2 no problems:



C:UsersAdministrator>nslookup www.google.com
Server: localhost
Address: ::1

Non-authoritative answer:
Name: www.google.com
Addresses: 2a00:1450:4006:802::2004
 216.58.206.132


Both are AD DC in single-domain setup, DNS configured with public forwarders, DC DNS points to itself only. IPv4 and IPv6 enabled on servers, but IPv6 is disabled on router. Did not touch any of those servers for past few months.



Did MS change anything?
I do not remember DNS ever before switched to IPv6....why did it switch now? And why it works on one server and not on the other, still they are both the same (actually, same deployment, just configured for 2 different domains).






domain-name-system active-directory ipv6 windows-server-2016 ipv4







share|improve this question
















I manage hundreds of servers for many customers. Most are SMB segment, having 1 to 3 servers per customer max.
In past few weeks I get more and more frequent DNS errors on random domain controllers, from 2008R2 to 2016. Simply put, DC does not resolve DNS anymore. This happened on some dozen of servers lately, and I haven't figured out the cause yet.



Weird is, that for example, on same premises, 2 VMs, 2 domain controllers for 2 different companies, each with 15 users. Same ISP, same router, same switch.
1 DC works OK, no problems, while 2nd DC cannot resolve DNS anymore:



On server 1 problem local DNS... but nslookup to 8.8.8.8 works!?:



C:UsersAdministrator>nslookup
Default Server: UnKnown
Address: ::1

> www.google.com
Server: UnKnown
Address: ::1

DNS request timed out.
 timeout was 2 seconds.
DNS request timed out.
 timeout was 2 seconds.
*** Request to UnKnown timed-out
> server 8.8.8.8
Default Server: google-public-dns-a.google.com
Address: 8.8.8.8

> www.google.com
Server: google-public-dns-a.google.com
Address: 8.8.8.8

Non-authoritative answer:
Name: www.google.com
Addresses: 2a00:1450:4001:81c::2004
 172.217.16.68

>


On server 2 no problems:



C:UsersAdministrator>nslookup www.google.com
Server: localhost
Address: ::1

Non-authoritative answer:
Name: www.google.com
Addresses: 2a00:1450:4006:802::2004
 216.58.206.132


Both are AD DC in single-domain setup, DNS configured with public forwarders, DC DNS points to itself only. IPv4 and IPv6 enabled on servers, but IPv6 is disabled on router. Did not touch any of those servers for past few months.



Did MS change anything?
I do not remember DNS ever before switched to IPv6....why did it switch now? And why it works on one server and not on the other, still they are both the same (actually, same deployment, just configured for 2 different domains).






domain-name-system active-directory ipv6 windows-server-2016 ipv4




domain-name-system active-directory ipv6 windows-server-2016 ipv4






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Jul 26 '18 at 6:13







Labsy

















asked Jul 25 '18 at 21:48









LabsyLabsy

136




136












  • The switch to IPv6 began with Server 2008/Vista. It's not new at all. Since then, localhost has been ::1 and used IPv6 unless the system was explicitly misconfigured by the admin.

    – Michael Hampton
    Jul 25 '18 at 21:50












  • DC DNS points to itself only - If there are two DC/DNS servers then this configuration is incorrect. Each DC/DNS server should use it's "partner" DC/DNS server for primary DNS, itself for secondary DNS, and 127.0.0.1 for tertiary DNS.

    – joeqwerty
    Jul 26 '18 at 1:01











  • @joequerty - both servers are standalone single DC's, each for it's own domain.

    – Labsy
    Jul 26 '18 at 6:16

















  • The switch to IPv6 began with Server 2008/Vista. It's not new at all. Since then, localhost has been ::1 and used IPv6 unless the system was explicitly misconfigured by the admin.

    – Michael Hampton
    Jul 25 '18 at 21:50












  • DC DNS points to itself only - If there are two DC/DNS servers then this configuration is incorrect. Each DC/DNS server should use it's "partner" DC/DNS server for primary DNS, itself for secondary DNS, and 127.0.0.1 for tertiary DNS.

    – joeqwerty
    Jul 26 '18 at 1:01











  • @joequerty - both servers are standalone single DC's, each for it's own domain.

    – Labsy
    Jul 26 '18 at 6:16
















The switch to IPv6 began with Server 2008/Vista. It's not new at all. Since then, localhost has been ::1 and used IPv6 unless the system was explicitly misconfigured by the admin.

– Michael Hampton
Jul 25 '18 at 21:50






The switch to IPv6 began with Server 2008/Vista. It's not new at all. Since then, localhost has been ::1 and used IPv6 unless the system was explicitly misconfigured by the admin.

– Michael Hampton
Jul 25 '18 at 21:50














DC DNS points to itself only - If there are two DC/DNS servers then this configuration is incorrect. Each DC/DNS server should use it's "partner" DC/DNS server for primary DNS, itself for secondary DNS, and 127.0.0.1 for tertiary DNS.

– joeqwerty
Jul 26 '18 at 1:01





DC DNS points to itself only - If there are two DC/DNS servers then this configuration is incorrect. Each DC/DNS server should use it's "partner" DC/DNS server for primary DNS, itself for secondary DNS, and 127.0.0.1 for tertiary DNS.

– joeqwerty
Jul 26 '18 at 1:01













@joequerty - both servers are standalone single DC's, each for it's own domain.

– Labsy
Jul 26 '18 at 6:16





@joequerty - both servers are standalone single DC's, each for it's own domain.

– Labsy
Jul 26 '18 at 6:16










1 Answer
1






active

oldest

votes


















0














There are two possible reasons for a timeout.



  • The request is sent to the wrong address.

  • The request doesn't arrive at the DNS server, or the DNS response doesn't get back because of network problem.

Use ipconfig /all to list the DNS servers. If they are different, correct them. If they are the same, use a packet sniffer on the server and on the router to find out what packets are sent.






share|improve this answer























  • Both servers are on SAME subnet, SAME router, SAME switch. Both use forwarders to 8.8.8.8. If I look at router, the problematic server's DNS requests most of the time do not reach the router from inside out... BUT some (rare) DNS requests from this same server somehow still pass through. For example, trying nslookup www.google.com does not pass, but when I lounch Check for updates, I can see DNS request for MS update service goes through.

    – Labsy
    Jul 26 '18 at 0:28












  • EDIT: There are NO lost DNS packets. All DNS requests are passing correctly from local server's IP to 8.8.8.8 and back. They are obviously lost when they arrive back to server.

    – Labsy
    Jul 26 '18 at 0:42






  • 1





    ADDING: manually selecting 8.8.8.8 server with NSLOOKUP works without any problems from problematic server. While using ::1 or localhost or local server's IP as DNS does not.

    – Labsy
    Jul 26 '18 at 0:49











  • I understood that the configuration is the SAME, but if it stopped working, there must be some reason. You should add that nslookup www.google.com 8.8.8.8 works to the question, not everybody reads all the comments. It seems there is something wrong with the local resolver. Check the services whether it is running and the event log for possible problems.

    – RalfFriedl
    Jul 26 '18 at 5:20











  • Thank you, I edited OP question with nslookup details. I've checked DNS and DNS server logs, and there's no errors or warnings. All needed services are up & running. Monit is configured the same for both servers, and if I compare services one-by-one, on both servers all is the same. I also cleared DNS cache, rebooted multiple times, flushed cache, checked hosts file....hmmm, running out of ideas slowly.

    – Labsy
    Jul 26 '18 at 6:19












Your Answer








StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);













draft saved

draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f923550%2fproblems-with-dns-and-ipv6-on-server-2012-and-2016%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes









0














There are two possible reasons for a timeout.



  • The request is sent to the wrong address.

  • The request doesn't arrive at the DNS server, or the DNS response doesn't get back because of network problem.

Use ipconfig /all to list the DNS servers. If they are different, correct them. If they are the same, use a packet sniffer on the server and on the router to find out what packets are sent.






share|improve this answer























  • Both servers are on SAME subnet, SAME router, SAME switch. Both use forwarders to 8.8.8.8. If I look at router, the problematic server's DNS requests most of the time do not reach the router from inside out... BUT some (rare) DNS requests from this same server somehow still pass through. For example, trying nslookup www.google.com does not pass, but when I lounch Check for updates, I can see DNS request for MS update service goes through.

    – Labsy
    Jul 26 '18 at 0:28












  • EDIT: There are NO lost DNS packets. All DNS requests are passing correctly from local server's IP to 8.8.8.8 and back. They are obviously lost when they arrive back to server.

    – Labsy
    Jul 26 '18 at 0:42






  • 1





    ADDING: manually selecting 8.8.8.8 server with NSLOOKUP works without any problems from problematic server. While using ::1 or localhost or local server's IP as DNS does not.

    – Labsy
    Jul 26 '18 at 0:49











  • I understood that the configuration is the SAME, but if it stopped working, there must be some reason. You should add that nslookup www.google.com 8.8.8.8 works to the question, not everybody reads all the comments. It seems there is something wrong with the local resolver. Check the services whether it is running and the event log for possible problems.

    – RalfFriedl
    Jul 26 '18 at 5:20











  • Thank you, I edited OP question with nslookup details. I've checked DNS and DNS server logs, and there's no errors or warnings. All needed services are up & running. Monit is configured the same for both servers, and if I compare services one-by-one, on both servers all is the same. I also cleared DNS cache, rebooted multiple times, flushed cache, checked hosts file....hmmm, running out of ideas slowly.

    – Labsy
    Jul 26 '18 at 6:19
















0














There are two possible reasons for a timeout.



  • The request is sent to the wrong address.

  • The request doesn't arrive at the DNS server, or the DNS response doesn't get back because of network problem.

Use ipconfig /all to list the DNS servers. If they are different, correct them. If they are the same, use a packet sniffer on the server and on the router to find out what packets are sent.






share|improve this answer























  • Both servers are on SAME subnet, SAME router, SAME switch. Both use forwarders to 8.8.8.8. If I look at router, the problematic server's DNS requests most of the time do not reach the router from inside out... BUT some (rare) DNS requests from this same server somehow still pass through. For example, trying nslookup www.google.com does not pass, but when I lounch Check for updates, I can see DNS request for MS update service goes through.

    – Labsy
    Jul 26 '18 at 0:28












  • EDIT: There are NO lost DNS packets. All DNS requests are passing correctly from local server's IP to 8.8.8.8 and back. They are obviously lost when they arrive back to server.

    – Labsy
    Jul 26 '18 at 0:42






  • 1





    ADDING: manually selecting 8.8.8.8 server with NSLOOKUP works without any problems from problematic server. While using ::1 or localhost or local server's IP as DNS does not.

    – Labsy
    Jul 26 '18 at 0:49











  • I understood that the configuration is the SAME, but if it stopped working, there must be some reason. You should add that nslookup www.google.com 8.8.8.8 works to the question, not everybody reads all the comments. It seems there is something wrong with the local resolver. Check the services whether it is running and the event log for possible problems.

    – RalfFriedl
    Jul 26 '18 at 5:20











  • Thank you, I edited OP question with nslookup details. I've checked DNS and DNS server logs, and there's no errors or warnings. All needed services are up & running. Monit is configured the same for both servers, and if I compare services one-by-one, on both servers all is the same. I also cleared DNS cache, rebooted multiple times, flushed cache, checked hosts file....hmmm, running out of ideas slowly.

    – Labsy
    Jul 26 '18 at 6:19














0












0








0







There are two possible reasons for a timeout.



  • The request is sent to the wrong address.

  • The request doesn't arrive at the DNS server, or the DNS response doesn't get back because of network problem.

Use ipconfig /all to list the DNS servers. If they are different, correct them. If they are the same, use a packet sniffer on the server and on the router to find out what packets are sent.






share|improve this answer













There are two possible reasons for a timeout.



  • The request is sent to the wrong address.

  • The request doesn't arrive at the DNS server, or the DNS response doesn't get back because of network problem.

Use ipconfig /all to list the DNS servers. If they are different, correct them. If they are the same, use a packet sniffer on the server and on the router to find out what packets are sent.







share|improve this answer












share|improve this answer



share|improve this answer










answered Jul 25 '18 at 22:33









RalfFriedlRalfFriedl

2,4853614




2,4853614












  • Both servers are on SAME subnet, SAME router, SAME switch. Both use forwarders to 8.8.8.8. If I look at router, the problematic server's DNS requests most of the time do not reach the router from inside out... BUT some (rare) DNS requests from this same server somehow still pass through. For example, trying nslookup www.google.com does not pass, but when I lounch Check for updates, I can see DNS request for MS update service goes through.

    – Labsy
    Jul 26 '18 at 0:28












  • EDIT: There are NO lost DNS packets. All DNS requests are passing correctly from local server's IP to 8.8.8.8 and back. They are obviously lost when they arrive back to server.

    – Labsy
    Jul 26 '18 at 0:42






  • 1





    ADDING: manually selecting 8.8.8.8 server with NSLOOKUP works without any problems from problematic server. While using ::1 or localhost or local server's IP as DNS does not.

    – Labsy
    Jul 26 '18 at 0:49











  • I understood that the configuration is the SAME, but if it stopped working, there must be some reason. You should add that nslookup www.google.com 8.8.8.8 works to the question, not everybody reads all the comments. It seems there is something wrong with the local resolver. Check the services whether it is running and the event log for possible problems.

    – RalfFriedl
    Jul 26 '18 at 5:20











  • Thank you, I edited OP question with nslookup details. I've checked DNS and DNS server logs, and there's no errors or warnings. All needed services are up & running. Monit is configured the same for both servers, and if I compare services one-by-one, on both servers all is the same. I also cleared DNS cache, rebooted multiple times, flushed cache, checked hosts file....hmmm, running out of ideas slowly.

    – Labsy
    Jul 26 '18 at 6:19


















  • Both servers are on SAME subnet, SAME router, SAME switch. Both use forwarders to 8.8.8.8. If I look at router, the problematic server's DNS requests most of the time do not reach the router from inside out... BUT some (rare) DNS requests from this same server somehow still pass through. For example, trying nslookup www.google.com does not pass, but when I lounch Check for updates, I can see DNS request for MS update service goes through.

    – Labsy
    Jul 26 '18 at 0:28












  • EDIT: There are NO lost DNS packets. All DNS requests are passing correctly from local server's IP to 8.8.8.8 and back. They are obviously lost when they arrive back to server.

    – Labsy
    Jul 26 '18 at 0:42






  • 1





    ADDING: manually selecting 8.8.8.8 server with NSLOOKUP works without any problems from problematic server. While using ::1 or localhost or local server's IP as DNS does not.

    – Labsy
    Jul 26 '18 at 0:49











  • I understood that the configuration is the SAME, but if it stopped working, there must be some reason. You should add that nslookup www.google.com 8.8.8.8 works to the question, not everybody reads all the comments. It seems there is something wrong with the local resolver. Check the services whether it is running and the event log for possible problems.

    – RalfFriedl
    Jul 26 '18 at 5:20











  • Thank you, I edited OP question with nslookup details. I've checked DNS and DNS server logs, and there's no errors or warnings. All needed services are up & running. Monit is configured the same for both servers, and if I compare services one-by-one, on both servers all is the same. I also cleared DNS cache, rebooted multiple times, flushed cache, checked hosts file....hmmm, running out of ideas slowly.

    – Labsy
    Jul 26 '18 at 6:19

















Both servers are on SAME subnet, SAME router, SAME switch. Both use forwarders to 8.8.8.8. If I look at router, the problematic server's DNS requests most of the time do not reach the router from inside out... BUT some (rare) DNS requests from this same server somehow still pass through. For example, trying nslookup www.google.com does not pass, but when I lounch Check for updates, I can see DNS request for MS update service goes through.

– Labsy
Jul 26 '18 at 0:28






Both servers are on SAME subnet, SAME router, SAME switch. Both use forwarders to 8.8.8.8. If I look at router, the problematic server's DNS requests most of the time do not reach the router from inside out... BUT some (rare) DNS requests from this same server somehow still pass through. For example, trying nslookup www.google.com does not pass, but when I lounch Check for updates, I can see DNS request for MS update service goes through.

– Labsy
Jul 26 '18 at 0:28














EDIT: There are NO lost DNS packets. All DNS requests are passing correctly from local server's IP to 8.8.8.8 and back. They are obviously lost when they arrive back to server.

– Labsy
Jul 26 '18 at 0:42





EDIT: There are NO lost DNS packets. All DNS requests are passing correctly from local server's IP to 8.8.8.8 and back. They are obviously lost when they arrive back to server.

– Labsy
Jul 26 '18 at 0:42




1




1





ADDING: manually selecting 8.8.8.8 server with NSLOOKUP works without any problems from problematic server. While using ::1 or localhost or local server's IP as DNS does not.

– Labsy
Jul 26 '18 at 0:49





ADDING: manually selecting 8.8.8.8 server with NSLOOKUP works without any problems from problematic server. While using ::1 or localhost or local server's IP as DNS does not.

– Labsy
Jul 26 '18 at 0:49













I understood that the configuration is the SAME, but if it stopped working, there must be some reason. You should add that nslookup www.google.com 8.8.8.8 works to the question, not everybody reads all the comments. It seems there is something wrong with the local resolver. Check the services whether it is running and the event log for possible problems.

– RalfFriedl
Jul 26 '18 at 5:20





I understood that the configuration is the SAME, but if it stopped working, there must be some reason. You should add that nslookup www.google.com 8.8.8.8 works to the question, not everybody reads all the comments. It seems there is something wrong with the local resolver. Check the services whether it is running and the event log for possible problems.

– RalfFriedl
Jul 26 '18 at 5:20













Thank you, I edited OP question with nslookup details. I've checked DNS and DNS server logs, and there's no errors or warnings. All needed services are up & running. Monit is configured the same for both servers, and if I compare services one-by-one, on both servers all is the same. I also cleared DNS cache, rebooted multiple times, flushed cache, checked hosts file....hmmm, running out of ideas slowly.

– Labsy
Jul 26 '18 at 6:19






Thank you, I edited OP question with nslookup details. I've checked DNS and DNS server logs, and there's no errors or warnings. All needed services are up & running. Monit is configured the same for both servers, and if I compare services one-by-one, on both servers all is the same. I also cleared DNS cache, rebooted multiple times, flushed cache, checked hosts file....hmmm, running out of ideas slowly.

– Labsy
Jul 26 '18 at 6:19


















draft saved

draft discarded
















































Thanks for contributing an answer to Server Fault!


  • Please be sure to answer the question. Provide details and share your research!

But avoid


  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.

To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f923550%2fproblems-with-dns-and-ipv6-on-server-2012-and-2016%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Wikipedia:Vital articles Мазмуну Biography - Өмүр баян Philosophy and psychology - Философия жана психология Religion - Дин Social sciences - Коомдук илимдер Language and literature - Тил жана адабият Science - Илим Technology - Технология Arts and recreation - Искусство жана эс алуу History and geography - Тарых жана география Навигация менюсу

Image
centralized watchlist Wikipedia:Vital articles Wikipedia дан Jump to navigation Jump to search This is a list of basic subjects for which Wikipedia should have a corresponding high-quality article, and ideally a featured article. It also serves as a centralized watchlist and tracks the status of some of Wikipedia's most essential articles. Ideally this page should list approximately 1,000 of the most vital Wikipedia articles. Мазмуну 1 Biography - Өмүр баян 1.1 Actors, dancers and models - Актёрлор, бийчилер жана моделдер 1.2 Artists and architects - Сүрөтчүлөр жана архитекторлор 1.3 Authors, playwrights and poets - Жазуучулар, драматургдар жана акындар 1.4 Composers and musicians - Композиторлор жана музыканттар 1.5 Explorers and travelers - Изилдөөчүлөр менен саякатчылар 1.6 Film directors and screenwriters - Режиссёрлор жана сценаристтер 1.7 Inventors, scientists and mathematicians - Ойлоп табуучулар, окумуштуулар жана математиктер
Read more

Bruxelas-Capital Índice Historia | Composición | Situación lingüística | Clima | Cidades irmandadas | Notas | Véxase tamén | Menú de navegacióneO uso das linguas en Bruxelas e a situación do neerlandés"Rexión de Bruxelas Capital"o orixinalSitio da rexiónPáxina de Bruselas no sitio da Oficina de Promoción Turística de Valonia e BruxelasMapa Interactivo da Rexión de Bruxelas-CapitaleeWorldCat332144929079854441105155190212ID28008674080552-90000 0001 0666 3698n94104302ID540940339365017018237

Image
AnderlechtCidade de BruxelasIxellesEtterbeekEvereGanshorenJetteKoekelbergAuderghemSchaerbeekBerchem-Sainte-AgatheSaint-GillesMolenbeek-Saint-JeanSaint-Josse-ten-NoodeWoluwe-Saint-LambertWoluwe-Saint-PierreUccleForestWatermaal-Bosvoorde Comunidade Francesa de Bélxica Comunidade Flamenga de Bélxica Comunidade Xermanófona de Bélxica Bruxelas-CapitalRexións de Bélxica francésneerlandésRexiónsBélxicacomunidade francesacomunidade flamengafrancófonaflamengaUnión EuropeaMagrebMarrocosTurquíaAméricaÁfricaRepública Democrática do CongoEuropa central18 de xuño1989FlandresRexión Valoaflamengaséculo XIXClasificación climática de Köppen Bruxelas-Capital Na Galipedia, a Wikipedia en galego. Saltar ata a navegación Saltar á procura Para outras páxinas con títulos homónimos véxase: Bruxelas . Région de Bruxelles-Capitale Brussels Hoofdstedelijk Gewest Bandeira Estado Bélxica Capital Cidade de Bruxelas  • Poboación n/d Lingua oficial As dúas Superficie  • Total 1
Read more

What should I write in an apology letter, since I have decided not to join a company after accepting an offer letterShould I keep looking after accepting a job offer?What should I do when I've been verbally told I would get an offer letter, but still haven't gotten one after 4 weeks?Do I accept an offer from a company that I am not likely to join?New job hasn't confirmed starting date and I want to give current employer as much notice as possibleHow should I address my manager in my resignation letter?HR delayed background verification, now jobless as resignedNo email communication after accepting a formal written offer. How should I phrase the call?What should I do if after receiving a verbal offer letter I am informed that my written job offer is put on hold due to some internal issues?Should I inform the current employer that I am about to resign within 1-2 weeks since I have signed the offer letter and waiting for visa?What company will do, if I send their offer letter to another company

Image
When is the original BFGS algorithm still better than the Limited-Memory version? How well known and how commonly used was Huffman coding in 1979? Inverse-quotes-quine Can the US president have someone sent to jail? Employer wants to use my work email account after I quit, is this legal under German law? Is this a GDPR waiver? Do French speakers not use the subjunctive informally? Low-gravity Bronze Age fortifications Does ultrasonic bath cleaning damage laboratory volumetric glassware calibration? Why do some games show lights shine through walls? Unusual mail headers, evidence of an attempted attack. Have I been pwned? Smooth Julia set for quadratic polynomials Require advice on power conservation for backpacking trip Dimensions of list used in test C-152 carb heat on before landing in hot weather? Is my Rep in Stack-Exchange Form? What happens when your group is victim of a surprise attack but you can't be surprised? How come I was asked by a CBP
Read more