Question 297731 in Amazon Web Sevices Question posted in
The official Amazon Web Services documentation can be found here.

Amazon web services – AWS, VPC, Hosted Zone and Domains and DNS

I can’t seem to get DNS setup right. I have A records, NS and SOA record. I notice the domain list a different set of DNS servers than the Hosted Zone. Anyway I can’t get anything to resolve across the web. Right now the DNS servers are what are listed for the Hosted Zone. A few days ago I realize there was a payment processing and I had to renew the domain. Could the VPC be an issue? maybe a security issue? Anyway it’s frustrating when something that should be so simple isn’t working.

larrydgraytest.net  A   Simple  -   No  18.217.154.12
300 -   -   -
larrydgraytest.net  NS  Simple  -   No  ns-562.awsdns-06.net.
ns-471.awsdns-58.com.
ns-1424.awsdns-50.org.
ns-1904.awsdns-46.co.uk.
300 -   -   -
larrydgraytest.net  SOA Simple  -   No  ns-562.awsdns-06.net. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400
300 -   -   -
samplewar.larrydgraytest.net    A   Simple  -   No  18.217.154.12
300 -   -   -
www.larrydgraytest.net  A   Simple  -   No  18.217.154.12
300 -   -   -

What do you think? How should I be thinking to troubleshoot this?

In general it shouldn’t take 3 days for a domain record to propagate right? Maybe a few minutes?

I have 2 vpc’s in the region I’m using. I guess I left the default VPC and made a 2nd one, should I remove it?

I have not tried using the domain’s dns servers vs the hosted zone dns servers yet.
I have not tried removing all vpc’s
At first I was using the entire domain name with sub domain then I realized all that’s needed is blank or nothing, www or subdomain when creating A records.

Tags:

2

Answers


  1. Chosen as BEST ANSWER
    0

    Ok I found where if you go to your domains and click your domain you can edit dns servers there. There were already 4 listed by default that were not the same as the hosted zone. You can't edit the hosted zone dns server list. So I made the domain match the hosted zone's list of dns servers and that seems to have fixed the issue. I found nothing in documentation to tell a person this.

    In fact I used domainsnext.com in the past and all I had to do was enter A and NS records. Also note above there is a . at the end of each name server in the ns record, I have no idea how that . got there. I removed them.


  2. 0

    Have you delegated larrydgraytest.net from your registrar to Route 53?

    The domain resolves correctly when querying Route 53 directly using the NS values you shared above:

    $ dig @ns-471.awsdns-58.com larrydgraytest.net

; <<>> DiG 9.10.6 <<>> @ns-471.awsdns-58.com larrydgraytest.net
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 35150
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;larrydgraytest.net.        IN  A

;; ANSWER SECTION:
larrydgraytest.net. 300 IN  A   18.217.154.12

;; AUTHORITY SECTION:
larrydgraytest.net. 300 IN  NS  ns-1424.awsdns-50.org.
larrydgraytest.net. 300 IN  NS  ns-1904.awsdns-46.co.uk.
larrydgraytest.net. 300 IN  NS  ns-471.awsdns-58.com.
larrydgraytest.net. 300 IN  NS  ns-562.awsdns-06.net.

    But not if when querying another name server:

    $ dig  @1.1.1.1 larrydgraytest.net

; <<>> DiG 9.10.6 <<>> @1.1.1.1 larrydgraytest.net
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 21683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; OPT=15: 00 16 61 74 20 64 65 6c 65 67 61 74 69 6f 6e 20 6c 61 72 72 79 64 67 72 61 79 74 65 73 74 2e 6e 65 74 2e ("..at delegation larrydgraytest.net.")
; OPT=15: 00 17 32 30 35 2e 32 35 31 2e 31 39 34 2e 32 33 32 3a 35 33 20 72 63 6f 64 65 3d 52 45 46 55 53 45 44 20 66 6f 72 20 6c 61 72 72 79 64 67 72 61 79 74 65 73 74 2e 6e 65 74 20 41 ("..205.251.194.232:53 rcode=REFUSED for larrydgraytest.net A")
;; QUESTION SECTION:
;larrydgraytest.net.        IN  A

    Your domain registrar should have a place for you to enter NS servers. Enter the values given in the hosted zone, e.g.

    ns-1424.awsdns-50.org.
ns-1904.awsdns-46.co.uk.
ns-471.awsdns-58.com.
ns-562.awsdns-06.net.
    Login or Signup to reply.
Please signup or login to give your own answer.

Back To Top
Search