JS - DNS Server

Dear all,

I think my client's DNS server is either corrupted or poorly setup.

We have external email senders that are unable to deliver the email to two of my clients.

Is there anyway I can do to do a through check on whether the DNS server is correctly configured?

Windows Server 2008 R2 Standard SP1
Intel Xeon CPU X5650 @ 2.67GHz (2 processors)
8.00 GB
80GB HDD, 30GB Free
LVL 1
Anonymous KHIT EngineerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Anonymous KHIT EngineerAuthor Commented:
My clients a few of them are always not connected to the Domain Network, I have to disable their network adapter and re-enable so that they are connected to the domain network.
0
Anonymous KHIT EngineerAuthor Commented:
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation.  All rights reserved.

C:\Windows\system32>nslookup 10.10.10.11 set querytype=any
Usage:
   nslookup [-opt ...]             # interactive mode using default server
   nslookup [-opt ...] - server    # interactive mode using 'server'
   nslookup [-opt ...] host        # just look up 'host' using default server
   nslookup [-opt ...] host server # just look up 'host' using 'server'

C:\Windows\system32>nslookup server 10.10.10.11 set querytype=any
Usage:
   nslookup [-opt ...]             # interactive mode using default server
   nslookup [-opt ...] - server    # interactive mode using 'server'
   nslookup [-opt ...] host        # just look up 'host' using default server
   nslookup [-opt ...] host server # just look up 'host' using 'server'

C:\Windows\system32>nslookup server <10.10.10.1>1 set querytype=any
The system cannot find the file specified.

C:\Windows\system32>nslookup server <10.10.10.11> set querytype=any
The system cannot find the file specified.

C:\Windows\system32>nslookup server jackspeed set querytype=any
Usage:
   nslookup [-opt ...]             # interactive mode using default server
   nslookup [-opt ...] - server    # interactive mode using 'server'
   nslookup [-opt ...] host        # just look up 'host' using default server
   nslookup [-opt ...] host server # just look up 'host' using 'server'

C:\Windows\system32>ls -d
'ls' is not recognized as an internal or external command,
operable program or batch file.

C:\Windows\system32>nslookup
Default Server:  dsldevice.lan
Address:  fe80::9e97:26ff:fe8f:591e

> server 10.10.10.11
Default Server:  [10.10.10.11]
Address:  10.10.10.11

> set q=SOA
> jackspeed.com
Server:  [10.10.10.11]
Address:  10.10.10.11

Non-authoritative answer:
jackspeed.com
        primary name server = ns1.wizdreamhost.net
        responsible mail addr = admin.wizdreamhost.net
        serial  = 2012062038
        refresh = 3600 (1 hour)
        retry   = 600 (10 mins)
        expire  = 1209600 (14 days)
        default TTL = 3600 (1 hour)

ns1.wizdreamhost.net    internet address = 103.55.124.201
> set q=NS
> jackspeed.com
Server:  [10.10.10.11]
Address:  10.10.10.11

Non-authoritative answer:
jackspeed.com   nameserver = ns1.wizdreamhost.net
jackspeed.com   nameserver = ns2.wizdreamhost.net

ns1.wizdreamhost.net    internet address = 103.55.124.201
> set q=MX
> jackspeed.com
Server:  [10.10.10.11]
Address:  10.10.10.11

Non-authoritative answer:
jackspeed.com   MX preference = 10, mail exchanger = mx1.jackspeed.com
jackspeed.com   MX preference = 5, mail exchanger = mx2.jackspeed.com

mx1.jackspeed.com       internet address = 103.55.124.163
mx2.jackspeed.com       internet address = 103.55.124.152
> set q=any
> jackspeed.com
Server:  [10.10.10.11]
Address:  10.10.10.11

Non-authoritative answer:
jackspeed.com   internet address = 103.55.124.101
jackspeed.com   nameserver = ns1.wizdreamhost.net
jackspeed.com   nameserver = ns2.wizdreamhost.net
jackspeed.com
        primary name server = ns1.wizdreamhost.net
        responsible mail addr = admin.wizdreamhost.net
        serial  = 2012062038
        refresh = 3600 (1 hour)
        retry   = 600 (10 mins)
        expire  = 1209600 (14 days)
        default TTL = 3600 (1 hour)
jackspeed.com   MX preference = 5, mail exchanger = mx2.jackspeed.com
jackspeed.com   MX preference = 10, mail exchanger = mx1.jackspeed.com
jackspeed.com   text =

        "v=spf1 mx ip4:115.42.223.0/24 ip4:119.73.200.0/24 ~all"

ns1.wizdreamhost.net    internet address = 103.55.124.201
mx2.jackspeed.com       internet address = 103.55.124.152
mx1.jackspeed.com       internet address = 103.55.124.163
> ls -d jackspeed.com
[[10.10.10.11]]
*** Can't list domain jackspeed.com: Non-existent domain
The DNS server refused to transfer the zone jackspeed.com to your computer. If t
his
is incorrect, check the zone transfer security settings for jackspeed.com on the
 DNS
server at IP address 10.10.10.11.
0
tankergoblinCommented:
did you register your mail domain in public?
1
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

David Johnson, CD, MVPOwnerCommented:
From MXtoolbox.com
blacklist       jackspeed.com       Blacklisted by CBL       
blacklist       jackspeed.com       Blacklisted by Spamhaus ZEN
https       jackspeed.com       The Certificate is invalid
http       jackspeed.com       Failure - response over threshold (23.45s/10s)       
smtp       mx1.jackspeed.com       Reverse DNS Resolution - No PTR Record found
smtp       mx1.jackspeed.com       Warning - Does not support TLS.
smtp       mx1.jackspeed.com       16.692 seconds - Not good! on Transaction Time
smtp       mx2.jackspeed.com       Reverse DNS Resolution - No PTR Record found       
smtp       mx2.jackspeed.com       Warning - Does not support TLS.
smtp       mx2.jackspeed.com       16.318 seconds - Not good! on Transaction Time
dns       jackspeed.com       At least one name server failed to respond in a timely manner

jackspeed.com uses an invalid security certificate. The certificate is only valid for www.bbsurvey.sg The certificate expired on 17-Mar-2012 7:59 PM. The current time is 22-May-2015 5:03 PM.
0
Anonymous KHIT EngineerAuthor Commented:
Hi David,

Can you please enlighten me what does it all mean?
0
David Johnson, CD, MVPOwnerCommented:
blacklist:  jackspeed.com has sent spam in the past and any mail from then will be blocked by the RBL providers.

The rest basically is to do with a certificate missing or incorrect.  One cannot implement HTTPS/TLS without a certificate.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Anonymous KHIT EngineerAuthor Commented:
Thanks David.

I just checked the record again and it seems that they are no longer blacklisted.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows OS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.