dnslint error message - server did not respond to udp queries

G

Guest

Recent complaints of outside companies not reaching my mail server. Believe
DNS issue - ran dnslint and got error

"DNS server: dns.cityofsanbenito.com
IP Address:Unknown
UDP port 53 responding to queries: Unknown
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: Unknown

SOA record data from server:
Authoritative name server: Unknown
Zone serial number: Unknown
Zone expires in: Unknown
Refresh period: Unknown
Retry delay: Unknown
Default (minimum) TTL: Unknow
--------------------------------------------------------------------------------
Notes:
One or more DNS servers may not be authoritative for the domain
One or more DNS servers did not respond to UDP queries
One or more zone files may have expired

Website at www.cityofsanbenito.com 208.209.117.133, which also is public dns
server.
Exchange box (mail.cityofsanbenito.com) inside NAT and 208.209.117.134

Ran dnsreport.com and mostly all pass. Any suggestions would help. Thx.
 
G

Guest

It is true that my mail server is actually inside my private LAN, which is
actually my dc. I do not want to expose it. My sonciwall firewall points to
its private ip when receiving pop3 and sending smtp.

Any suggestions on how to correct some of those dnsreport.com and dnslint
errors without exposing it and making it a public host?
 
K

Kevin D. Goodknecht Sr. [MVP]

Javier said:
It is true that my mail server is actually inside my private LAN,
which is
actually my dc. I do not want to expose it. My sonciwall firewall
points to
its private ip when receiving pop3 and sending smtp.

Any suggestions on how to correct some of those dnsreport.com and
dnslint
errors without exposing it and making it a public host?
Click to expand...

If you want to get your mail it has to be a public host. You can and should
keep it behind your firewall.
As for the DNS Report warnings, here'e the list:
SOA serial format, Refresh value, and Expire value, edit the SOA record to
change the serial to the recommended format e.g for today, it is 2005042000,
increase the Refresh value to 3600 seconds, Increase the SOA expire to at
least two weeks.

There isn't anything you can do about the MX record unless you can get
someone to host a backup smtp service for you.

In the mail server host name, edit the SMTP virtual server, delivery tab,
Advanced button, fully qualified domain name field, change to
mail.cityofsanbenito.com.
 
G

Guest

Thanks for the info...applied and now she is more compliant and errors are
gone.
Thanks again.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

CNAME record missing from AD forest GUID 3
CNAME record missing from AD forest GUID 1
DnsModifyRecordsInSet returns error 9002 0
Equally weighted MX records issue - OK on Windows 2003 but not Windows 2000 7
DNS excessive traffic root hints 14
Ephemeral ports in Windows2000 (a way to fix the port for queries to root DNS servers) 2
Dns Server on windows 2000 8
IP address associated with the given NS record cannot be found --- Pri DNS + VPN server 23

Top