Community discussions

MikroTik App
 
provoshane
newbie
Topic Author
Posts: 30
Joined: Sat Feb 12, 2005 7:17 pm
Location: Georgetown TX

DNS Failure

Sun Oct 03, 2010 4:36 am

I have several x86 boxes running MT v4 and 3. On each of them, over a period of time, the DNS service has stopped functioning. I finally realized that it occurred when I inadvertently tried to change the cache file size while the cache file was being cleared.

I have rebooted the machines, changed cache file size, stopped the service then changed the cache size, all to no avail.

Has anyone found a way to fix this problem?
 
dssmiktik
Forum Veteran
Forum Veteran
Posts: 732
Joined: Fri Aug 17, 2007 8:42 am

Re: DNS Failure

Sun Oct 03, 2010 6:07 am

This may be a long-shot:

1) Disable DNS requests: /ip dns set allow-remote-requests=no
2) Flush cache: /ip dns cache flush
3) Reboot
4) Flush cache again: /ip dns cache flush
5) DNS requests should be disabled. Enable: /ip dns set allow-remote-requests=yes

I haven't experienced this problem, so I can say that this will fix your issue, but it should clear out any issues with DNS.
 
provoshane
newbie
Topic Author
Posts: 30
Joined: Sat Feb 12, 2005 7:17 pm
Location: Georgetown TX

Re: DNS Failure

Sun Oct 03, 2010 6:39 am

I found the problem and hopefully this will assist others who come across it:

In viewing the forums, I saw a post that mentioned the primary and secondary server settings defaulting to 0.0.0.0 I also had this happen when my DNS service failed.

What I failed to notice was the Max UDP Packet size had ALSO reset to a value of 50. When I changed it back to 512, voila! The DNS service is now working correctly!
 
fewi
Forum Guru
Forum Guru
Posts: 7717
Joined: Tue Aug 11, 2009 3:19 am

Re: DNS Failure

Sun Oct 03, 2010 7:11 am

All the root servers now do DNSSEC, and it's being rolled out more and more. DNSSEC is going to introduce packet sizes far larger than 512 bytes, and even AAAA records for IPv6 can go over that size if a record resolves to several IPs in a round robin fashion.

I set all my DNS inspecting firewalls to a maximum size of 4,096 byes now where I can't make them read the OPT bit advertising the actual record length. RFC3226 is a good read for this topic. I'd also use 4,096 bytes for the RouterOS caching resolver, though I am not entirely sure it can handle DNSSEC it can can definitely handle AAAA records.
 
nikolovski
just joined
Posts: 3
Joined: Sun Mar 07, 2010 4:12 pm

Re: DNS Failure

Wed Oct 20, 2010 7:33 pm

This may be a long-shot:

1) Disable DNS requests: /ip dns set allow-remote-requests=no
2) Flush cache: /ip dns cache flush
3) Reboot
4) Flush cache again: /ip dns cache flush
5) DNS requests should be disabled. Enable: /ip dns set allow-remote-requests=yes

I haven't experienced this problem, so I can say that this will fix your issue, but it should clear out any issues with DNS.
Hello,

I have the same problem with some Mikrotiks, and I can't find the logic behind this.
I cleared all the DNS cache and set the max udp packet size to 512 - but the DNS is still not working. The router is set to allow remote requests and outside dns servers are defined.
When I try to use the router as resolver, the router returns "Standard query response, server failure".
Do you have any other ideas?

Thank you.
 
romanse
just joined
Posts: 24
Joined: Fri Apr 10, 2009 8:16 pm

Re: DNS Failure

Thu Oct 21, 2010 2:56 pm

Have anybody resolve DNS problem?
 
Inssomniak
Member
Member
Posts: 332
Joined: Fri Apr 13, 2007 11:21 pm

Re: DNS Failure

Fri Oct 22, 2010 2:12 am

Ive had this problem a few times too, rebooting it seems to be the only fix.

Support suggested changing the x86 to a routerboard, but I cant do that.

Who is online

Users browsing this forum: Techsystem and 36 guests