Can you reach this domain: ***.com? I have Ispconfig 3.2.2 on Ubuntu 18.04 with apache installed following the perfect server guide. I'm having problems with one domain called ***.com. I have DNS server up and running but I dont use it, I use DNS servers from domain name provider. I attached images of DNS config. I had this web hosted on my server and mail in another non ispconfig server. Last week I change MX records to point to my ispconfig server but after 2 days, MX record didn't update, when I check it from dnschecker.org it sometimes points to ispconfig server and sometimes to old server. I tried changing DNS to cloudflare but now I can't even reach the web and cannot ping domain from ispconfig server itself! I change DNS servers again to provider. In the meantime, some mails arrive on old server (i keep it as secondary MX Record) and cannot send nor receive from some domains, getting errors like this in mail queue: Code: (host mx01.1and1.es[217.72.192.67] said: 451 Requested action aborted: local error in processing (in reply to MAIL FROM command)) Sender address rejected: Domain not found (in reply to RCPT TO command) While other like gmail or hotmail works fine. Somebody knows what could be the problem? Should I keep DNS record on ispconfig even if I'm using another DNS server or can I delete them completely? Why cannot I ping domain from ispconfig itself? Thanks in advance edit: hide domain names
If you don't use ISPConfig for the nameservers, remove the zone to prevent any confusion. Have you added the domain in ISPConfig as site and email domain? Take a look at: https://intodns.com/example.com and https://zonemaster.net/result/XXX One of the first issues is that you added DNSSEC keys to the registry, but DNSSEC is not enabled on the nameserver. This is your first problem, so solve that and then proceed.
when did you change the records at virtualns.net? the record for your backup mx at net2.webcloud.es doesn't exist on ns2.virtualns.net and the a record for mail.acusmed.com hasn't updated on their either. Code: nslookup -q=mx acusmed.com ns1.virtualns.net Server: ns1.virtualns.net Address: 185.57.196.10#53 acusmed.com mail exchanger = 10 net2.webcloud.es. acusmed.com mail exchanger = 0 mail.acusmed.com. nslookup -q=mx acusmed.com ns2.virtualns.net Server: ns2.virtualns.net Address: 31.47.76.130#53 acusmed.com mail exchanger = 0 mail.acusmed.com. nslookup mail.acusmed.com ns2.virtualns.net Server: ns2.virtualns.net Address: 31.47.76.130#53 Name: mail.acusmed.com Address: 149.202.228.232 nslookup mail.acusmed.com ns1.virtualns.net Server: ns1.virtualns.net Address: 185.57.196.10#53 Name: mail.acusmed.com Address: 78.47.140.10
Thanks both a lot. It seems now my provider enables dnssec by default on new domains. I disable it and delete DNS records on ispconfig server. Still no ping from ispconfig but there is from my computer (this morning i haven't). Ill be waiting to see if this solve the problem
Most likely you'll have to wait for it to propagate. This can take quite some time. Check again in 12hrs.
You still have problems with your setup. Ask your provider about the incorrect serial. This can cause your nameservers to have difference in the set records. Also, make sure your MX record does not point to a CNAME. See https://intodns.com/example.com
This should be the problem. I have same problem with domain ***.com: I still receive mails in old server, even yesterday I received mails in web server, that is a differente one, totally new and NEVER was MX target. I suposse is because of this: Code: nslookup -q=mx ***.com ns1.virtualns.net Servidor: UnKnown Address: 185.57.196.10 ***.com MX preference = 0, mail exchanger = mail.***.com ***.com MX preference = 20, mail exchanger = baldajos.com ***.com MX preference = 10, mail exchanger = gigastur.net mail.***.com internet address = 78.47.140.10 Code: nslookup -q=mx ***.com ns2.virtualns.net Servidor: UnKnown Address: 31.47.76.130 ***.com MX preference = 0, mail exchanger = ***.com ***.com internet address = 149.55.55.55 Secondary DNS server points MX to domain.com instead mail.domain.com. At least now this IP is from the old mail server instead of web server I changed secondary DNS server to another provider now and will see. On the other hand, still no ping to ***.com from ispconfig server, and the another domain sometimes ping, sometimes don't. Will ask to DNS provider
Glad to hear. Maybe, if they have more issues. When I started with webhosting I used the DNS server's from someone else for the few zones I had. When I got more clients, I started hosting it myself.
How you deal with secondary DNS server? I could use ispconfig as primary but then, will I need to get a secondary VPS and install another ispconfig instance? or are there any other simpler DNS server? On the other hand, could you please edit your comments and delete any domain reference? Thanks
Yes, set up a second ISPConfig server as slave. There will be a new guide about this soon. There are also providers where you can get a secondary DNS service from them. Yes, I will edit them.
you realise that even if we do that, there isn't anything mentioned in this thread that wouldn't be publicly accessible information anyway simply by virtue of the domain being registered and having a public dns zone configured.
