zhangguanzhang's Blog

adguardhome dns FORMERR 错误

字数统计: 361阅读时长: 1 min
2020/05/12

由来

这几天发现某个 zone 上游时不时地址无法解析,dnsmasq -> adguardhome/xxx.com/10.x.x.x

排查

先用 dig 排查,发现是上游的问题,加上 noedns 就能解析了

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
root@OpenWrt:~# dig @10.x.x.x  xxx.xxxxx.net 

; <<>> DiG 9.17.13 <<>> @10.x.x.x xxx.xxxxx.net
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: FORMERR, id: 4331
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: d78e15fa2f6a032a (echoed)
;; QUESTION SECTION:
;xxx.xxxxx.net. IN A

;; Query time: 4 msec
;; SERVER: 10.x.x.x#53(10.x.x.x) (UDP)
;; WHEN: Tue May 24 14:54:09 CST 2022
;; MSG SIZE rcvd: 60

root@OpenWrt:~# dig @10.x.x.x xxx.xxxxx.net +noedns

; <<>> DiG 9.17.13 <<>> @10.x.x.x xxx.xxxxx.net +noedns
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21141
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;xxx.xxxxx.net. IN A

;; ANSWER SECTION:
xxx.xxxxx.net. 1192 IN A 10.1.x.x

;; Query time: 4 msec
;; SERVER: 10.x.x.x#53(10.x.x.x) (UDP)
;; WHEN: Tue May 24 14:54:13 CST 2022
;; MSG SIZE rcvd: 53

EDNS 就是在遵循已有的 DNS 消息格式的基础上增加一些字段,来支持更多的DNS请求业务。然后关闭了 adguardhome 的 启用 EDNS 客户端子网 就好了

2022/05/25 , 问题又复现了,不知道怎么解决,暂时这个域名加 hosts

参考

CATALOG
  1. 1. 由来
  2. 2. 排查
  3. 3. 参考