VOIP etc > Voice Over IP - VOIP > VOIP Tech Chat > [Asterisk] Temporary failure in name resolution

[Asterisk] Temporary failure in name resolution

The issue tracker mentioned toronto2.voip.ms as being unreachable and redirected to toronto.voip.ms early today.

Both now resolve to different addresses (199.21.149.36, 198.144.158.125), so hopefully this is no longer appearing in your log.

well this has been happening for a log time i always see it a few times a day in the log file. I never noticed any issues so i just have been ignoring it.

Now im wondering what is causing it so maybe i can fix it.

reply to rudeboy24
I wonder if the ISP occasionally has trouble servicing DNS requests?

If so, this is easily remedied by using public DNS servers as backup.

64.140.120.22  Start Communications
64.140.120.21  Start Communications
198.53.64.7    Northern Telephone Ontario CA
208.67.222.222 OpenDNS
208.67.222.220 OpenDNS
8.8.4.4        Google
8.8.8.8        Google
 

        forwarders { 64.140.120.22;
                     64.140.120.21;
                     198.53.64.7;
                     208.67.220.222;
                     208.67.220.220;
                     8.8.8.8;
                     8.8.4.4;
                   };
 

reply to rudeboy24
When this happen it's because the DNS daemon is unable to query the host for toronto.voip.ms

You can test like this when connected via SSH to the server


host toronto.voip.ms


It should return something like this:
toronto.voip.ms has address 199.21.149.36

Is the server under DHCP or Static IP? If Static IP, make sure /etc/resolv.conf has proper DNS IP Addresses that can handle DNS requests. If it's DHCP, make sure you have no firewall, nat rules etc blocking UDP port 53 (DNS). You could also try to use different DNS servers as in the example provided by scadageo by editing /etc/resolv.conf and adding lines like this "nameserver x.x.x.x" without the quotes, replacing the x.x.x.x by an actual DNS server.

Some might suggest to add the IP to /etc/hosts. Do not do that, this will break any fail over mechanisms over DNS that we might configure. Make sure you fix the DNS issue in the first place.

If you can't find the issue with your DNS, you could try to run a caching name server as suggested by Scadageo.

The temporary switch of IP we had with Toronto should not give you this type of issue. The only thing it does is return a different IP Address.

Let us know if you and how you resolve the issue.

Regards,
--
Martin - VoiP.ms

removed the 127.0.0.1 as well ...will report back tomorrow with the results.

also forgot to mention the server is a static ip (192.168.1.3) behind a Smoothwall router

That's how i have it done. been like that for years.
i thought maybe that was why it was getting that error, but it seems to be still doing it .

dig @192.168.1.1 toronto.voip.ms
 
dig @192.168.1.3 toronto.voip.ms
 

It was happening before Start.
no disconnects from Start.

dig @192.168.1.1 toronto.voip.ms

; DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5 @192.168.1.1 toronto.voip.ms
; (1 server found)
;; global options: printcmd
;; Got answer:
;; -HEADER- opcode: QUERY, status: NOERROR, id: 27794
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;toronto.voip.ms. IN A

;; ANSWER SECTION:
toronto.voip.ms. 66 IN A 199.21.149.36

;; Query time: 4 msec
;; SERVER: 192.168.1.1#53(192.168.1.1)
;; WHEN: Thu Mar 14 00:12:45 2013
;; MSG SIZE rcvd: 49


dig @192.168.1.3 toronto.voip.ms

; DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5 @192.168.1.3 toronto.voip.ms
; (1 server found)
;; global options: printcmd
;; Got answer:
;; -HEADER- opcode: QUERY, status: NOERROR, id: 41160
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;toronto.voip.ms. IN A

;; ANSWER SECTION:
toronto.voip.ms. 62 IN A 199.21.149.36

;; Query time: 5 msec
;; SERVER: 192.168.1.3#53(192.168.1.3)
;; WHEN: Thu Mar 14 00:12:48 2013
;; MSG SIZE rcvd: 49



Currently, I'm wonder if that's an asterisk dnsmgr issue.

not sure where to find dnsmgr ..is there some config files for it?

I forgot to mention im running FreePBX 2.10.1.8 (Asterisk Ver. 1.8.12.0)

asterisk -rx "sip show registry"
 

reply to rudeboy24
1.8.12.0 - main/netsock2.c - line 264, gai_strerror(e) is returning the actual system error message.

It's not asterisk, and what's strange is the failure after the addition of the public DNS servers.

It's time to capture some packets to figure out what's really happening.

seems when the Asterisk box sends a dns query to the smoothwall it is sending a ICMP packet back and it shows unreachable.


51559 7737.397832 192.168.1.3 192.168.1.1 DNS Standard query A toronto.voip.ms
51560 7737.398476 192.168.1.1 192.168.1.3 ICMP Destination unreachable (Port unreachable)


reply to rudeboy24
It shouldn't be an issue (many sites filter pings) as long as it answers the DNS request.

Was there an asterisk log entry at the same time?

Was there a DNS standard query response?

Here's a good link regarding tools for testing DNS servers:

»DNS Servers

Mele20's post references namebench.

It's a nice tool, but be aware that namebench's list IP addresses hasn't been updated in long time, so messages such as "www.google.com is hijacked" followed by a list of IP addresses will appear.

It shows the ERROR[3043] & WARNING[3043] in the asterisk log at the same time as Wireshark captures those errors.

Looks like it tries 4 times and doesn't get a dns query response.

Also I tried a nslookup from my windows 7 box and it gets query result.

Thanks SCADAGeo for taking the time to help me out

reply to rudeboy24