resolved CNAME redirect issues
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
systemd |
Fix Released
|
Unknown
|
|||
systemd (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Groovy |
Invalid
|
Undecided
|
Unassigned |
Bug Description
I am having issues loading certain websites such as linkedin.com and portions of google sites including images.google.com, hotmail.com login, etc. After looking through some logs and such I've determined that resolved is not properly following CNAMEs to an IP address. Querying the DNS server on my network directly for the info works fine. Loading the sites from other computers on the network works fine.
In the #systemd IRC channel I was directed to the following two issues:
https:/
https:/
System info:
Ubuntu 20.10
ii systemd 246.6-1ubuntu1.2 amd64 system and service manager
ii linux-generic 5.8.0.48.53 amd64 Complete Generic Linux kernel and headers
Example:
[11:06:
Host static-
[11:06:
Global
LLMNR setting: no
MulticastDNS setting: no
DNSOverTLS setting: no
DNSSEC setting: no
DNSSEC supported: no
DNS Domain: rhos.bigfiber.net
Link 2 (enp6s0)
Current Scopes: none
DefaultRoute setting: no
LLMNR setting: yes
MulticastDNS setting: no
DNSOverTLS setting: no
DNSSEC setting: no
DNSSEC supported: no
Link 3 (enp4s0f0)
Current Scopes: DNS
DefaultRoute setting: yes
LLMNR setting: yes
MulticastDNS setting: no
DNSOverTLS setting: no
DNSSEC setting: no
DNSSEC supported: no
Current DNS Server: 10.18.1.1
DNS Servers: 10.18.1.1
DNS Domain: ~.
Link 4 (enp4s0f1)
Current Scopes: none
DefaultRoute setting: no
LLMNR setting: yes
MulticastDNS setting: no
DNSOverTLS setting: no
DNSSEC setting: no
DNSSEC supported: no
[11:06:
Using domain server:
Name: 10.18.1.1
Address: 10.18.1.1#53
Aliases:
static-
2-01-2c3e-
li-prod-
li-prod-
star-azureedge-
dual.t-
t-0009.t-msedge.net is an alias for Edge-Prod-
Edge-Prod-
edge-prod-
standard.
standard.
standard.
standard.
resolved debugging log is attached.
Changed in systemd: | |
status: | Unknown → Fix Released |
Quite a number of CNAME redirects you have there!
The resolved logs appear to be fine, e.g.: resolved[ 73519]: Added positive unauthenticated cache entry for standard. t-0009. t-msedge. net IN A 30s on enp4s0f0/ INET/10. 18.1.1 resolved[ 73519]: Added positive unauthenticated cache entry for standard. t-0009. t-msedge. net IN A 30s on enp4s0f0/ INET/10. 18.1.1
Mar 28 11:30:27 castle systemd-
Mar 28 11:30:27 castle systemd-
And when I try to resolve your example hostname it only goes through 2 CNAMES: exp1.licdn. com exp1.licdn. com is an alias for 2-01-2c3e- 003d.cdx. cedexis. net. 003d.cdx. cedexis. net is an alias for cs1404. wpc.epsiloncdn. net. wpc.epsiloncdn. net has address 152.199.24.163 wpc.epsiloncdn. net has IPv6 address 2606:2800: 21f:fedd: 8b7a:88ab: fc7e:fa3b
$ host static-
static-
2-01-2c3e-
cs1404.
cs1404.
Do you have a different example hostname that I can try to reproduce this with?