Text only | Text with Images

Hurricane Electric's IPv6 Tunnel Broker Forums

IPv6 Certification Program Topics => General Discussion => Topic started by: wjding on October 03, 2013, 06:53:49 AM

Title: Enthusiast Certificate Stuck - No AAAA Records
Post by: wjding on October 03, 2013, 06:53:49 AM
I added a new domain securenet.com in FreeDNS, and added one record: apple.securenet.com with AAAA record.
==================================
; securenet.com Dumped Thu Oct  3 06:51:13 2013
;
securenet.com.   86400   IN   SOA   ns1.he.net. hostmaster.he.net. (
               2013100301   ; Serial
               10800   ; Refresh
               1800   ; Retry
               604800   ; Expire
               86400 )   ; Minimum TTL
securenet.com.   300   IN   NS   ns1.he.net.
securenet.com.   300   IN   NS   ns2.he.net.
securenet.com.   300   IN   NS   ns3.he.net.
securenet.com.   300   IN   NS   ns4.he.net.
securenet.com.   300   IN   NS   ns5.he.net.
apple.securenet.com.   300   IN   AAAA   2001:470:818e:0:20c:29ff:feb6:ce5a
www.securenet.com.   300   IN   CNAME   apple.
==================================

However, when I provided apple.securenet.com as webserver FQDN, it complains no AAAA Record found.


Now I can "dig @ns2.he.net apple.secure.com", but I don't know why?

Do I need to ask .com authorized DNS server to direct the NS record to ns2.he.net?

Thank you in advance!
Title: Re: Enthusiast Certificate Stuck - No AAAA Records
Post by: broquea on October 03, 2013, 07:50:47 AM
So you actually registered securenet.com?

Code Select
Updated Date: 19-oct-2011
Creation Date: 13-aug-1997
Expiration Date: 12-aug-2018
Name Server: NS3.SECURENET.COM
Name Server: NS2.SECURENET.COM


Just because you shoved a domain and records into the dns.he.net system, doesn't mean you get control over the domain from those name servers. NS1-5 are authoritative name servers, not recursors, so the test does not query those name servers.

If you actually registered that domain, you need to update your authoritative name server list with GoDaddy, your registrar.
Title: Re: Enthusiast Certificate Stuck - No AAAA Records
Post by: wjding on October 03, 2013, 10:13:40 AM
OK, thank you so much for your answer! This is exactly what I thought of - but I really have no hint that I should have done so.
The domain does not belong to me.
So it seems I do need to apply for a subdomain to direct the NS record to nsx.he.net.

Thank you!

Quote from: broquea on October 03, 2013, 07:50:47 AM
So you actually registered securenet.com?

Code Select
Updated Date: 19-oct-2011
Creation Date: 13-aug-1997
Expiration Date: 12-aug-2018
Name Server: NS3.SECURENET.COM
Name Server: NS2.SECURENET.COM


Just because you shoved a domain and records into the dns.he.net system, doesn't mean you get control over the domain from those name servers. NS1-5 are authoritative name servers, not recursors, so the test does not query those name servers.

If you actually registered that domain, you need to update your authoritative name server list with GoDaddy, your registrar.
Title: Re: Enthusiast Certificate Stuck - No AAAA Records
Post by: broquea on October 03, 2013, 11:09:06 AM
Not a subdomain, you need to go out and buy/register a domain. Unless you know someone that is going to give you a subdomain, and access to their auth NS and creating IPv6 host records for IPv6 glue. So go register your own domain already! :)
Text only | Text with Images