DNS resolution failed via Cloudflare

Greetings from Norway - new to this community and limited DNS / Cloudflare knowledge… but

our local provider is using Cloudflare and we are unable to reach certain sites due to DNS resolution errors via Cloudflare, including my private domain: ijzermans.com

The problem has existed for several weeks now and not sure how to update Cloudflare records / get this resolved. See the attached image of DNS check showing ALL other channels work flawlessly.

What to do?

How long ago did you ask your domain registrar to change the nameservers to those assigned by cloudflare? The site is currently pending this update.

$ dig ns ijzermans.com +short
ns3.firstfind.nl.
ns4.firstfind.nl.
ns5.firstfind.net.

What are the other domains are you having issues with & are those yours or sites you’re visiting?

Hi, Thanks for your reply. I am not running my site (ijzermans.com) to through cloudflare, but our local internet provider is using cloudflare’s DNS (not sure i say this correct, lost in translation…). In short i cannot reach my site (and other sites) if I am connected to the internet through the local provider… and when i check DNS online i see that Cloudflare’s servers/service is not able to resolve DNS to my site. Now how do I inform cloudflare? or update/flush their DNS…?

Thanks again, Arnout

I seem to be able to resolve fine via Cloudflare

nslookup ijzermans.com 1.1.1.1
Server:  one.one.one.one
Address:  1.1.1.1

Non-authoritative answer:
Name:    ijzermans.com
Address:  5.157.84.201

What do these commands return for you?

nslookup ijzermans.com 1.1.1.1
nslookup ijzermans.com 1.0.0.1
nslookup ijzermans.com 8.8.8.8

nslookup www.ijzermans.com 1.1.1.1
nslookup www.ijzermans.com 1.0.0.1
nslookup www.ijzermans.com 8.8.8.8

nslookup -class=chaos -type=txt id.server 1.1.1.1
nslookup -class=chaos -type=txt id.server 1.0.0.1

nslookup ijzermans.com 1.1.1.1

Server: 1.1.1.1

Address: 1.1.1.1#53

** server can’t find ijzermans.com: SERVFAIL (ALSO ON 1.0.0.1)

via google:
nslookup ijzermans.com 8.8.8.8

Server: 8.8.8.8

Address: 8.8.8.8#53

Non-authoritative answer:

Name: ijzermans.com

Address: 5.157.84.201

Ehm, and the other six commands?

IJzermanss-MBP:~ ijzermans$ nslookup www.ijzermans.com 1.1.1.1

Server: 1.1.1.1

Address: 1.1.1.1#53

** server can’t find www.ijzermans.com: SERVFAIL

IJzermanss-MBP:~ ijzermans$ nslookup -class=chaos -type=txt id.server 1.1.1.1

Server: 1.1.1.1

Address: 1.1.1.1#53

Non-authoritative answer:

id.server text = “OSL”

Authoritative answers can be found from:

IJzermanss-MBP:~ ijzermans$ nslookup -class=chaos -type=txt id.server 1.0.0.1

Server: 1.0.0.1

Address: 1.0.0.1#53

Non-authoritative answer:

id.server text = “OSL”

Authoritative answers can be found from:

IJzermanss-MBP:~ ijzermans$ nslookup www.ijzermans.com 1.0.0.1

Server: 1.0.0.1

Address: 1.0.0.1#53

** server can’t find www.ijzermans.com: SERVFAIL

Sorry for messy replies. New to this and have been harassing my provider but keeps pointing me into cloudflare’s direction. Not sure which server respons can help you to determine the problem. Intended to host local event site, but that is a bit silly if local area can access the site… hope you have some tips!

Alright, can you also run these commands?

curl -iH 'accept: application/dns-json' 'https://cloudflare-dns.com/dns-query?name=ijzermans.com'
curl -iH 'accept: application/dns-json' 'https://1.1.1.1/dns-query?name=ijzermans.com'

MBP:~ ijzermans$ curl -H ‘accept: application/dns-json’ ‘https://cloudflare-dns.com/dns-query?name=ijzermans.com

{“Status”:0,“TC”:false,“RD”:true,“RA”:true,“AD”:false,“CD”:false,“Question”:[{“name”:“ijzermans.com”,“type”:1}],“Answer”:[{“name”:“ijzermans.com”,“type”:1,“TTL”:300,“data”:“5.157.84.201”}]}IJzermanss-MBP:~ ijzermans$ curl -iH ‘accept: appli.1.1/dns-query?name=ijzermans.com

HTTP/2 200

date : Fri, 31 Jan 2020 09:36:41 GMT

content-type : application/dns-json

content-length : 124

access-control-allow-origin : *

expect-ct : max-age=604800, report-uri=“https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct

server : cloudflare

cf-ray : 55dab3d85f6ffab4-OSL

{“Status”: 2,“TC”: false,“RD”: true, “RA”: true, “AD”: false,“CD”: false,“Question”:[{“name”: “ijzermans.com.”, “type”: 1}]}IJzermanss-MBP:~ ijzermans$

That output is very mangled. Can you run the commands again and post the proper output?

curl -iH ‘accept: application/dns-json’ ‘https://cloudflare-dns.com/dns-query?name=ijzermans.com

HTTP/2 200
date : Fri, 31 Jan 2020 09:41:10 GMT
content-type : application/dns-json
content-length : 209
access-control-allow-origin : *
cache-control : max-age=300
expect-ct : max-age=604800, report-uri=“https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct
server : cloudflare
cf-ray : 55daba716e28fac8-OSL
{“Status”: 0,“TC”: false,“RD”: true, “RA”: true, “AD”: false,“CD”: false,“Question”:[{“name”: “ijzermans.com.”, “type”: 1}],“Answer”:[{“name”: “ijzermans.com.”, “type”: 1, “TTL”: 300, “data”: “5.157.84.201”}]}


curl -iH ‘accept: application/dns-json’ ‘https://1.1.1.1/dns-query?name=ijzermans.com

HTTP/2 200
date : Fri, 31 Jan 2020 09:42:42 GMT
content-type : application/dns-json
content-length : 209
access-control-allow-origin : *
cache-control : max-age=207
expect-ct : max-age=604800, report-uri=“https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct
server : cloudflare
cf-ray : 55dabcb0abd7fac8-OSL
{“Status”: 0,“TC”: false,“RD”: true, “RA”: true, “AD”: false,“CD”: false,“Question”:[{“name”: “ijzermans.com.”, “type”: 1}],“Answer”:[{“name”: “ijzermans.com.”, “type”: 1, “TTL”: 207, “data”: “5.157.84.201”}]}

Wow! dont know what happend. but now i can reach the site again

Alright, it seems the resolution via DoH actually works.

Can you try one last set of commands?

nslookup ijzermans.com 1.1.1.1
nslookup example.com 1.1.1.1
nslookup sitemeer.com 1.1.1.1

:heart_eyes:

nslookup ijzermans.com 1.1.1.1

Server: 1.1.1.1

Address: 1.1.1.1#53

Non-authoritative answer:

Name: ijzermans.com

Address: 5.157.84.201

IJzermanss-MBP:~ ijzermans$ nslookup example.com 1.1.1.1

Server: 1.1.1.1

Address: 1.1.1.1#53

Non-authoritative answer:

Name: example.com

Address: 93.184.216.34

IJzermanss-MBP:~ ijzermans$ nslookup sitemeer.com 1.1.1.1

Server: 1.1.1.1

Address: 1.1.1.1#53

Non-authoritative answer:

Name: sitemeer.com

Address: 104.22.1.130

Name: sitemeer.com

Address: 104.22.0.130

IJzermanss-MBP:~ ijzermans$

Okay, seems to all work now.

1 Like

Dear Sandro! Compliments and Thanks for fixing something i have been trying to resolve for weeeeeeks. Greetings from Norway!

1 Like

Thanks, but I didnt fix anything, I just went through a debugging session with you :slight_smile:

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.