Re: [SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out

To: debian-user@lists.debian.org
Subject: Re: [SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
From: Greg Wooledge <greg@wooledge.org>
Date: Mon, 13 Mar 2023 18:33:33 -0400
Message-id: <[🔎] ZA+kvSccA8+MxbRa@wooledge.org>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] NQS1TeZ--3-9@tutanota.com>
References: <[🔎] 3997a47a-10a5-0335-952b-cf834fae34c3@ardley.org> <[🔎] NQPESYE--3-9@tutanota.com> <[🔎] f881d5b7-6e9c-945d-7d6a-67cb3cfb9663@ardley.org> <[🔎] NQPOtbM--3-9@tutanota.com> <[🔎] E1pbfcm-0001Yt-SJ@enotuniq.net> <[🔎] NQPiwO3--3-9@tutanota.com> <[🔎] E1pbgfW-0001cy-8F@enotuniq.net> <[🔎] NQRXFzq--3-9@tutanota.com> <[🔎] E1pbpge-00029y-S5@enotuniq.net> <[🔎] NQS1TeZ--3-9@tutanota.com>

On Mon, Mar 13, 2023 at 11:14:20PM +0100, local10 wrote:
> Strangely, the issue resolved itself without me having to do anything. Am really puzzled as to what it was. Perhaps the internet provider suddenly started to block DNS queries but then allowed them again? If so, why did dig's message say that there was "communications error to 127.0.0.1#53: timed out"? It really gives an impression that dig was failing to connect 127.0.0.1 port 53, on which bind was running.
> 
> # dig www.yahoo.com <http://www.yahoo.com>
> ;; communications error to 127.0.0.1#53: timed out
> ;; communications error to 127.0.0.1#53: timed out
> ...
> 
> Maybe someone will shed some light on this.

UDP doesn't have a "connection".  The client sends a datagram (a one-way
message) to the UDP service, and then waits to receive a reply.

If the UDP service in turn sends a datagram to a third party, and waits
for a reply, but never receives one... and thus never responds to the
original client... then all the client knows is that it never got a
response.  It doesn't know why.

Reply to:

References:
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Reco <recoverym4n@enotuniq.net>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Reco <recoverym4n@enotuniq.net>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>
- Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: Reco <recoverym4n@enotuniq.net>
- [SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
  - From: local10 <local10@tutanota.com>

Prev by Date: Re: [SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Next by Date: Re: [SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Previous by thread: Re: [SOLVED?] Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Next by thread: Re: BIND: managed-keys-zone: Unable to fetch DNSKEY set '.': timed out
Index(es):
- Date
- Thread