none
External dns txt records are not processed RRS feed

  • Question

  • I am using windows server 2008 r2

    Hello,
    ran into the problem that the command “nslookup –type = txt” does not return the answer for some domains where this record actually exists. I have an nslookup running if I search for mx-record, a-record, etc., but txt-record doesn't work. Tell me what could be the problem? Below I attach an example of the executed commands:

    Windows PowerShell
    Copyright (C) 2016 Microsoft Corporation. All rights reserved.

    PS C: \ Users \ Administrator> nslookup -type = mx yandex.ru
    Server: dns.google
    Address: 8.8.8.8

    Non-authoritative answer:
    yandex.ru MX preference = 10, mail exchanger = mx.yandex.ru
    PS C: \ Users \ Administrator> nslookup -type = a yandex.ru
    Server: dns.google
    Address: 8.8.8.8

    DNS request timed out.
        timeout was 2 seconds.
    Non-authoritative answer:
    Name: yandex.ru
    Addresses: 5.255.255.55
              77.88.55.60
              77.88.55.55
              5.255.255.60

    PS C: \ Users \ Administrator> nslookup -type = txt yandex.ru
    Server: dns.google
    Address: 8.8.8.8

    *** dns.google can't find yandex.ru: Unspecified error
    PS C: \ Users \ Administrator>
    Thursday, February 11, 2021 9:27 AM

All replies

  • Hi there, I had a similar issue a while ago, just to ask? Are you using a CDN like Cloudflare, if so which one? If you are using Cloudflare I simply contacted them via email and they got back to me the next day and had fixed it, not sure about other CDN's like Amazon ect but if your using Cloudflare they should be able to help you out, not sure what they did but they emailed me the next day saying that they had resolved the issue hope this helps :)
    Friday, February 12, 2021 11:05 AM
  • That's typical for nslookup and is not an issue.
    If you do this manually you should get a result like so:
    c:\Tools>nslookup
    Default Server:  GJKLDJLK
    Address:  10.1.1.200

    > set type=txt
    > yandex.ru
    Server:  GJKLDJLK
    Address:  10.1.1.200

    Non-authoritative answer:
    yandex.ru       text =

            "have-i-been-pwned-verification=13c7b50cd0b12f85dabe796e6178fb74"
    yandex.ru       text =

            "2e35680fa5ac784cf58deca180385b5eff74dfeb831c2d73830425e8a8deb7d5"
    yandex.ru       text =

            "df22d6d27ce9cb078b94c5edcf1d6d2d78a24e1ef8b488427eca5d0ee675129a"
    yandex.ru       text =

            "mailru-verification: 530c425b1458283e"
    yandex.ru       text =

            "v=spf1 redirect=_spf.yandex.ru"
    yandex.ru       text =

            "MS=ms75457885"
    yandex.ru       text =

            "ebc00251b60542877fd641b73ad533da27c74a98b4b4164b6152bf44bc457d42"
    yandex.ru       text =

            "_globalsign-domain-verification=lD5-OgV_QE93G8rzNaeJKvtqe9tlP5AZtyDodrldYh"
    yandex.ru       text =

            "facebook-domain-verification=e750ewnqm68u4f83wvp6qp7iiphkj0"
    yandex.ru       text =

            "google-site-verification=XyQDB5000-0rTv33yw7AX-EiuH1v5yW5PjkYeYxxPEg"
    >

    I think nslookup doesn't like TCP and with big answers like this DNS responds with TCP and not the default UDP protocol.
    Should be somewhere in https://tools.ietf.org/html/rfc1035



    • Edited by Jevez Friday, February 19, 2021 10:36 AM
    • Proposed as answer by Steve Mighty Wednesday, March 17, 2021 7:15 PM
    Friday, February 19, 2021 10:33 AM
  • This is the command I have successfully run in my console

    C:\Users\wilfried>nslookup

    Default Server:  mydnsserver
    Address:  192.168.1.1

    > set type=txt

    > villagevines.com

    Server:  mydnsserver

    Address:  192.168.1.1

    *** No text (TXT) records available for villagevines.com

    >

    Tuesday, March 23, 2021 10:06 AM
  • I have a similar problem, thanks for the answers!
    Tuesday, March 23, 2021 4:47 PM