Avatar of Wayne Barron
Wayne Barron
Flag for United States of America asked on

DNS Server Port 53, is not reachable from the internet

Hello, All;

Virtual Machine
Windows 2016 Server
Windows DNS
Belkin Router

OK, the other day my port 53 became unavailable, I did not find out about it, until last night.
All my other ports are reachable, but port 53 is NOT.
I have it opened in my Router, and I can telnet 53 on the VM Server itself.

The servers have been running fine for several months.
Can someone please let me know what I need to check, as this has all my sites down as well as the Mail Server.

Windows Server 2008Windows NetworkingDNS

Avatar of undefined
Last Comment
Wayne Barron

8/22/2022 - Mon
Paul MacDonald

Two things I'd look for:
1) Windows (or other software-based) Firewall on the VM and the host
2) Another software product that interferes with DNS (Quickbooks can break DNS if Quickbooks doesn't start first.)
Wayne Barron

Neither one is an issue on the server.
If I can telnet the port, it should be OK and accessible on the server.
Scott Silva

Are you telnetting the port from outside?
Internal and external issues can be different.
Also your ISP could be blocking port 53 for some reason...
Sometimes they will get random ideas about different services they decide they don't want customers running...
Your help has saved me hundreds of hours of internet surfing.
Wayne Barron

I can telnet to the server from within the network on port 53.
I cannot telnet from outside of the network, the WWW cannot access my port 53.
Called my ISP, and since I purchased a Static IP From them, and I have my Modem BRIDGED to my Router.
There is no way for them to block any of my ports.
Paul MacDonald

"If I can telnet the port, it should be OK and accessible on the server."
Creating a connection on port 53 doesn't mean you're talking to DNS, it just means you're talking to something that's listening on port 53.
Scott Silva

Telnet doesn't really work with DNS queries... Could be as simple as a router reboot, or it could be something else...
You need to use dig or other things that speak DNS from OUTSIDE... If they don't connect, I would really look at your routers port forwards.
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Wayne Barron

I have DNS Connection now.
I can ping from the outside world and make a connection to my DNS Server.
HOWEVER. using tools: intodns.com
They cannot see or speak to my DNS Server.

So. To fix the issue with connecting to my DNS Server, the IP Address had been changed on the network, and I had to change it in the router.
From .22 to .21

So now, I just need to find out why the world is not able to communicate with it?

Can you post the relevant portion of the intodns.com report? The details might help narrow down the problem.
Wayne Barron

Mismatched NS records
WARNING: One or more of your nameservers did not return any of your NS records.
DNS servers responded
ERROR: One or more of your nameservers did not respond:
The ones that did not respond are:
Multiple Nameservers
ERROR: Looks like you have less than 2 nameservers.
Missing nameservers reported by your nameservers
You should already know that your NS records at your nameservers are missing, so here it is again:
SOA record
No valid SOA record came back!
MX Records
Oh well, I did not detect any MX records
WWW A Record
ERROR: I could not get any A records for domain name
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy
Log in to continue reading
Log In
Sign up - Free for 7 days
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
Wayne Barron

OK, so, it was a HUGE mistake on my part, that goes all the way back to a month ago when I switched everything over from a single drive to a RAID drive setup with a Server Farm consisting of 7-VM Windows 2016 servers.

So, from the existing VMs that were not a Farm, I simply added in new entries into the ROUTER for the new servers and disabled the old pointers. And the IP Addresses I used (DUAL NICS), everything worked great for about a month, and then, yesterday happened.
The only thing I needed to do was change the IP Address to the other NIC, and BAM, everything went to working.

So, for future visitors to this Thread.
If you have DUAL NICS, and you are having issues with your DNS not working.
Change to the other NIC within your ROUTER.

Thanks all.
I will split the point and have this as ANSWER.

Wayne Barron

Oh, and my Name Server had changed as well and was not properly put in.
So, I have to wait for that to go into effect and hopefully by tomorrow, I can post that everything is working right.
The only thing that is working at the moment, at least for some sites is the Mail Server.
And the DNS is working for getting my GMail to work for my main domain as well.

A lot of oversite and mess that I should have caught onto a month ago, is now biting me in the butt.
Scott Silva

As long as you have it swinging toward fixed, that is good...

Don't feel bad, we all have done something like it at least once...
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
Wayne Barron

It seems that I have more issues than I originally expected.
DNS or Something is not functioning properly.

When I try to add my NS record, for my domain that I have assigned to the IP Address.
It gives me:

The IP Address(es) or this server cannot be found.
No such host is known.

The NS record exists and is found.
NS Record
But, I can no longer access it through my network.
And I use BUDDYNS.COM as well, and they also do not resolve like they used to.
Nothing works.

What has happened?
before switching over to a Web forest, I just had 4 servers that ran everything and all worked.
But now that I am running ARR, it is proving to be a complete pain in the butt, to get this thing working properly.

Any idea's on what would be causing the DNS Resolve Error?
NS Record - The IP Address for this server cannot be found.
Wayne Barron

Fixed the last issue.
On my primary domain, of which is
I needed the primary server to be.

All is good for this one.
Going to close it out.

I tell you, all it takes is a few minutes of reading and NOT being tired when you do it.

Have a good one all.