我有一个主要和辅助域控制器,我们用作DNS服务器。用户访问网站的结果好坏参半。有些工作正常,有些则出错:
Network Access Message: The website cannot be found
Explanation: An IP address for the website you requested could not be found.
As a result, it was not possible to access the site.
例如,mcmaster.com无效。如果我从主DC运行nslookup:
C:\Users\Administrator>nslookup mcmaster.com
Server: dc.mydomain.local
Address: 10.1.1.35
Non-authoritative answer:
Name: mcmaster.com
Address: 209.64.25.230
一切看起来都不错,但是当我用www运行nslookup时。在地址前面加上:
C:\Users\Administrator>nslookup www.mcmaster.com
Server: dc.mydomain.local
Address: 10.1.1.35
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
*** Request to dc.mydomain.local timed-out
从DC运行nslookup www.mcmaster.com会产生不同的错误:
*** backupdc.mydomain.local can't find www.mcmaster.com: Server failed
我认为mcmaster.com解析为www.mcmaster.com,导致用户无法访问该网站。我有什么想法可以解决这个问题吗?
答案 0 :(得分:1)
我在工作中从我的系统运行nslookup并得到以下响应:
Server: WHATEVER
Address: xxx.xxx.xxx.xxx
Non-authoritative answer:
Name: mcmaster.com
Address: 209.64.25.230
Server: whatever
Address: xxx.xxx.xxx.xxx
Non-authoritative answer:
Name: a1843.b.akamai.net
Addresses: 23.66.232.17
23.66.232.26
Aliases: www.mcmaster.com
www.mcmaster.com.edgesuite.net
我最初的想法是,谁拥有DNS为麦克马斯特只是没有www作为有效的回应。我知道我将请求转发给www.whateverdomainirun.com到whateverdomainirun.com,但是,看到两个不同的DNS让我感到惊讶。
当我导航到http://mcmaster.com时,我会转到www。当我在mcmaster.com上运行tracert时,它失败并且目标网络无法访问。在我看来,这家公司已经将他们的网站放在Akamai的手中,并且这是最近的,所以你的本地DNS服务器没有更新,你可以尝试刷新缓存并再次执行,或者,在某种程度上你阻止请求Akamai出于某种原因出现在防火墙上。
最好和快速猜测你,这可能是非常错误:)。