My config is having two Hestia servers, the primary with web/email/dns/etc and the secondary as a slave dns server.
(to the best of my recollection…) Last night, I made an edit to a dns entry to change the TTL from 1 hour to 5 minutes (I’m anticipating possibly changing this IP frequently). Shortly afterwards, I started getting these emails:
v-change-remote-dns-domain-exp Error: api connection to dnspanel.mysite.com failed. Remote dns host has been suspended.After resolving issue run following commands: v-unsuspend-remote-dns-host dnspanel.mysite.com v-sync-dns-cluster dnspanel.mysite.com -- Hestia Control Panel controlpanel.mysite.com
v-add-remote-dns-domain Error: api connection to dnspanel.mysite.com failed. Remote dns host has been suspended.After resolving issue run following commands: v-unsuspend-remote-dns-host dnspanel.mysite.com v-sync-dns-cluster dnspanel.mysite.com -- Hestia Control Panel controlpanel.mysite.com
(I’m guessing this is unrelated, but on the off chance it isn’t, I’m including it here) Around the same time, I started having trouble accessing my control panel and found that my IP was getting added to the ban list, so I just removed it from a secondary connection and was able to connect again. This happened a couple more times.
My troubleshooting has since revealed that I can connect to the server from the internet, its services are running (I can access websites on it, get dns responses from it, mail works, etc) and it can connect outgoing connections, but only via IP. Obviously, this would indicate that the name servers aren’t set, so I checked that…
Except they are set. So I ran
dig google.com @188.8.131.52 and it timed out. I did the same with
tcpdump -n -I en1 host 184.108.40.206 on another terminal and got this back:
[email protected]:/home/mredig/.ssh# tcpdump -n -i en1 host 220.127.116.11 tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on en1, link-type EN10MB (Ethernet), capture size 262144 bytes 13:36:09.538555 IP my.ip.add.res.60270 > 18.104.22.168.53: 56747+ [1au] A? google.com. (51) 13:36:09.549974 IP 22.214.171.124.53 > my.ip.add.res.60270: 56747 1/0/1 A 126.96.36.199 (55) 13:36:14.356322 IP my.ip.add.res.59877 > 188.8.131.52.53: 3504+ [1au] A? google.com. (51) 13:36:14.357991 IP 184.108.40.206.53 > my.ip.add.res.59877: 3504 1/0/1 A 220.127.116.11 (55)
[email protected]:/etc/netplan# dig google.com @18.104.22.168 ; <<>> DiG 9.11.3-1ubuntu1.14-Ubuntu <<>> google.com @22.214.171.124 ;; global options: +cmd ;; connection timed out; no servers could be reached
I’m not very familiar with tcpdump, but it appears to me that they are communicating just fine. Anyone have any ideas?