My config is having two Hestia servers, the primary with web/email/dns/etc and the secondary as a slave dns server.
(to the best of my recollection…) Last night, I made an edit to a dns entry to change the TTL from 1 hour to 5 minutes (I’m anticipating possibly changing this IP frequently). Shortly afterwards, I started getting these emails:
v-change-remote-dns-domain-exp
Error: api connection to dnspanel.mysite.com failed.
Remote dns host has been suspended.After resolving issue run following commands:
v-unsuspend-remote-dns-host dnspanel.mysite.com
v-sync-dns-cluster dnspanel.mysite.com
--
Hestia Control Panel
controlpanel.mysite.com
and
v-add-remote-dns-domain
Error: api connection to dnspanel.mysite.com failed.
Remote dns host has been suspended.After resolving issue run following commands:
v-unsuspend-remote-dns-host dnspanel.mysite.com
v-sync-dns-cluster dnspanel.mysite.com
--
Hestia Control Panel
controlpanel.mysite.com
(I’m guessing this is unrelated, but on the off chance it isn’t, I’m including it here) Around the same time, I started having trouble accessing my control panel and found that my IP was getting added to the ban list, so I just removed it from a secondary connection and was able to connect again. This happened a couple more times.
My troubleshooting has since revealed that I can connect to the server from the internet, its services are running (I can access websites on it, get dns responses from it, mail works, etc) and it can connect outgoing connections, but only via IP. Obviously, this would indicate that the name servers aren’t set, so I checked that…
Except they are set. So I ran dig google.com @8.8.8.8
and it timed out. I did the same with tcpdump -n -I en1 host 8.8.8.8
on another terminal and got this back:
root@controlpanel:/home/mredig/.ssh# tcpdump -n -i en1 host 8.8.8.8
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on en1, link-type EN10MB (Ethernet), capture size 262144 bytes
13:36:09.538555 IP my.ip.add.res.60270 > 8.8.8.8.53: 56747+ [1au] A? google.com. (51)
13:36:09.549974 IP 8.8.8.8.53 > my.ip.add.res.60270: 56747 1/0/1 A 216.58.192.206 (55)
13:36:14.356322 IP my.ip.add.res.59877 > 8.8.8.8.53: 3504+ [1au] A? google.com. (51)
13:36:14.357991 IP 8.8.8.8.53 > my.ip.add.res.59877: 3504 1/0/1 A 216.58.192.238 (55)
Here’s the dig
output:
root@controlpanel:/etc/netplan# dig google.com @8.8.8.8
; <<>> DiG 9.11.3-1ubuntu1.14-Ubuntu <<>> google.com @8.8.8.8
;; global options: +cmd
;; connection timed out; no servers could be reached
I’m not very familiar with tcpdump, but it appears to me that they are communicating just fine. Anyone have any ideas?