[SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out

To: Debian User <debian-user@lists.debian.org>
Subject: [SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
From: local10 <local10@tutanota.com>
Date: Mon, 13 Mar 2023 23:14:20 +0100 (CET)
Message-id: <[🔎] NQS1TeZ--3-9@tutanota.com>
In-reply-to: <[🔎] E1pbpge-00029y-S5@enotuniq.net>
References: <[🔎] NQP2REz--B-9@tutanota.com> <[🔎] 3997a47a-10a5-0335-952b-cf834fae34c3@ardley.org> <[🔎] NQPESYE--3-9@tutanota.com> <[🔎] f881d5b7-6e9c-945d-7d6a-67cb3cfb9663@ardley.org> <[🔎] NQPOtbM--3-9@tutanota.com> <[🔎] E1pbfcm-0001Yt-SJ@enotuniq.net> <[🔎] NQPiwO3--3-9@tutanota.com> <[🔎] E1pbgfW-0001cy-8F@enotuniq.net> <[🔎] NQRXFzq--3-9@tutanota.com> <[🔎] E1pbpge-00029y-S5@enotuniq.net>

Mar 13, 2023, 21:42 by recoverym4n@enotuniq.net:

> Well, it was worth to check it.
>
>
> Next idea is somewhat more complicated.
>
> Install tcpdump.
> Run:
> tcpdump -pni any -s0 -w /tmp/dns.pcap -c 30 udp port 53 or tcp port 53
> Bounce BIND, wait for a minute at least.
> Do some DNS queries. One or two will do.
> Interrupt tcpdump unless it completes by itself.
> Post dns.pcap.
>


Strangely, the issue resolved itself without me having to do anything. Am really puzzled as to what it was. Perhaps the internet provider suddenly started to block DNS queries but then allowed them again? If so, why did dig's message say that there was "communications error to 127.0.0.1#53: timed out"? It really gives an impression that dig was failing to connect 127.0.0.1 port 53, on which bind was running.

# dig www.yahoo.com <http://www.yahoo.com>
;; communications error to 127.0.0.1#53: timed out
;; communications error to 127.0.0.1#53: timed out
...

Maybe someone will shed some light on this.

Thanks to everyone who responded.

Reply to:

Follow-Ups:
- Re: [SOLVED?] BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Casey Deccio <casey@deccio.net>
- Re: [SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: [SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Greg Wooledge <greg@wooledge.org>

References:
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Reco <recoverym4n@enotuniq.net>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Reco <recoverym4n@enotuniq.net>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Reco <recoverym4n@enotuniq.net>

Prev by Date: Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Next by Date: Re: [SOLVED?] BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Previous by thread: Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Next by thread: Re: [SOLVED?] BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Index(es):
- Date
- Thread