Sign up for a free newsletter →

Tong Family

, ,

web: Need an A Record for SOA propagation

Published by

rich

on

web: Need an A Record for SOA propagation

OK, I was too clever by half and it bit me. Basically, I have lots of different hosting providers, I’ve used Bluehost, Inmotion, Cloudways and DigitalOcean and I’ve been using A records to point to the individual hoster so I can easily switch. Last month I thought I was clever and just made tongfamily.com a CNAME that points to the appropriate hoster so I didn’t have to keep changing the A record.

This worked fine except for one small bug. About half the DNS Server around the world refused to propagate anything except the CNAME for tongfamily.com and they failed to propagate the MX Mail records, the NS Records and the important SOA (start of authority records).

Google worked fine so nothing broke since many of the people I correspond with are using Gmail, but iCloud mail, Verizon and bunch of others broke. As soon as I turned tongfamily.com to a regular A record it all worked fine!

Debugging DNS propagation issues

The first thing to know is that at the very top sits your registrar and you have to give the DNS servers that it will be your definition of your services. In my case I use Namecheap as a registrar and it points to a Netlify account.

  1. First check to make sure the name registrar DNS servers exactly match what the DNS hoster gives you. In my case that’s an exact match.
  2. Now to go DNS Checker and type your A record name in. In my case this was perfect. Then type in NS records and then MX records and I found that only about half the servers and many of the international ones didn’t have either MX or NS records. You will see that SOA records are not passed around at all. Once I made the above change and waited two hours, everything looks good.
  3. NSLookup.io is something that Paul turned me onto, this does a detailed record of what it finds and it is good for Google, OpenDNS, Authoritative (which means the home DNS server), so that confirmed there is a propagation problem and not a problem with the “big” DNS providers. but when I to Control D “filtered” DNS servers, I see this error “Cannot find SOA records in com” which is pretty bad and I also saw that in some far away servers.
  4. I checked a cool tool call dns.squish.net that does a detailed trace of finding records, but this worked find on their servers. The Watch Traversal is very informative.
  5. You can also try dig on your local machine, but I find that starting with the world first and DNS Checker is fastest

Leave a Reply

Only people in my network can comment.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Hello,

I’m Rich & Co.

Welcome to Tongfamily, our cozy corner of the internet dedicated to all things technology and interesting. Here, we invite you to join us on a journey of tips, tricks, and traps. Let’s get geeky!

Let’s connect

Join the nerds!

Stay updated with our latest tutorials and ideas by joining our newsletter.



Recent posts

Loading Mastodon feed…
https://www.instagram.com/richtong/