Hi,
I'm having a kind of a problem with my Split DNS Setup for quite some time now and now it got so bad, I can't just accept it any longer.
It used to work without any problems some time ago, but in the past months this started to make problems and it got worse.
The following is my setup:
Laptop, Linux Mint 20.2
Ethernet and WiFi
IPv6 disabled for some time now (yes, slap me in the face, I even work with IPv6 in my day job, so I know that disabling IPv6 shall never be used to solve Problems )
Router: 192.168.2.1
I run a DNSmasq on a BananaPi which serves as a DHCP Server and a DNS Server: 192.168.2.15
I have several services running on different machines, lets call them
service1.mydomain.tld 192.168.2.43
service2.mydomain.tld 192.168.2.44
service3.mydomain.tld 192.168.2.60
The Dnsmasq on the BananaPi/192.168.2.15 will resolve these domain names in my local network.
In the public DNS, all these three DNS records point to a CNAME
service1.mydomain.tld ---> CNAME dynamic.mydomain.tld
service2.mydomain.tld ---> CNAME dynamic.mydomain.tld
service3.mydomain.tld ---> CNAME dynamic.mydomain.tld
---> dynamic.mydomain.tld ---> A record: my temporary/dynamic Public WAN IP from the router (192.168.2.1)
Locally, dynamic.mydomain.tld ---> 192.168.2.30 (for some legacy reasons)
Now the problem:
When i am at home, after boot, the serviceX names will happily resolve to the local 192.168.2.x Addresses and Nextcloud, XMPP and whatelse i'm selfhosting at home will run just fine.
However, certain applications seem to trigger some mechanism, that will make resolved (or whatever else component there is in all the abstractions and cachings) resolve ServiceX to the public DNS informatoin, i.e. dynamic.mydomain.tld.
Funnily, once this is cached somehow, All serviceX domains will resolve to 192.168.2.30.
As there is no XMPP, no NextCloud and all the other services running, all the applications start failing.
I have written some script that will flush the DNS cache and then it might work.
Here it is more concrete
1. Reboot
2. Open terminal
3. watch -n 0.1 dig service1.mydomain.tld
----> A 192.168.2.XX
4. Start Thunderbird
5. Thunderbird will update Caldav calendar on my nextcloud
6. I can see immediately that the watch -n 0.1 dig service1.mydomain.tld changes to
CNAME dynamic.mydomain.tld
A 192.168.2.30
Reminder: 192.168.2.30 is a server that does not know about the service running on 192.168.2.XX
I have the same problem with dino (a modern XMPP client - it is actually nice software! just saying)
Here the scenario is
1. Reboot
2. Open terminal
3. watch -n 0.1 dig service1.mydomain.tld
----> A 192.168.2.XX
4. Start dino
5. Dino will happily connect XMPP to the XMPP server -
6. send an image via xmpp http_upload (which runs on xmpp.mydomain.com - 192.168.2.43) to the account connected in dino
7. Dino will resolve the http link
8. I can see immediately that the watch -n 0.1 dig service1.mydomain.tld changes to
CNAME dynamic.mydomain.tld
A 192.168.2.30
I can reproduce both scenarios perfectly.
I can't explain what is going on and i can't really find someone with the same situation.
The problem is: I can't really hardcode the DNS server somewhere as i use my laptop somewhere else and there DNS might be on 192.168.2.1 or so and not .2.15 ...
TLDR: how can i make systemd-resolved just do its f*cking(sorry) job to query the DNS server it was supposed to query because it is configured via DHCP.
Thanks for your help, it is really frustrating
br
sebastian
)