getting timeout when resolving retail.mobile.lbi.santander.uk
I've faced this issue on my Turris Omnia and found out that it is caused by knotd. I have tried to run it on docker (out of my "turris" network).
As you can see, when I dig this domain, it works fine:
$ dig @1.1.1.1 retail.mobile.lbi.santander.uk a
; <<>> DiG 9.18.8 <<>> @1.1.1.1 retail.mobile.lbi.santander.uk a
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40183
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;retail.mobile.lbi.santander.uk. IN A
;; ANSWER SECTION:
retail.mobile.lbi.santander.uk. 108 IN A 193.127.211.80
;; Query time: 3 msec
;; SERVER: 1.1.1.1#53(1.1.1.1) (UDP)
;; WHEN: Thu Jul 13 10:48:06 BST 2023
;; MSG SIZE rcvd: 75
kdig fails:
$ docker run --rm cznic/knot kdig @1.1.1.1 retail.mobile.lbi.santander.uk SOA +dnssec
;; WARNING: response timeout for 1.1.1.1@53(UDP)
;; WARNING: response timeout for 1.1.1.1@53(UDP)
;; WARNING: response timeout for 1.1.1.1@53(UDP)
;; ERROR: failed to query server 1.1.1.1@53(UDP)
...however it works fine for other domains:
$ docker run --rm cznic/knot kdig @1.1.1.1 nic.cz SOA +dnssec
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 26938
;; Flags: qr rd ra ad; QUERY: 1; ANSWER: 2; AUTHORITY: 0; ADDITIONAL: 1
;; EDNS PSEUDOSECTION:
;; Version: 0; flags: do; UDP size: 1232 B; ext-rcode: NOERROR
;; QUESTION SECTION:
;; nic.cz. IN SOA
;; ANSWER SECTION:
nic.cz. 1800 IN SOA a.ns.nic.cz. hostmaster.nic.cz. 1689235477 14400 3600 1209600 7200
nic.cz. 1800 IN RRSIG SOA 13 2 1800 20230727080427 20230713063427 36959 nic.cz. EBzkqEHwKlzsDIfb6Q5pPQ6szq4RFQfr2TfSpMqMzpizy/xSAfn3RsX/4q0lIVUODwY3sqgNyYXOFkDdHIYnNw==
;; Received 189 B
;; Time 2023-07-13 09:48:38 UTC
;; From 1.1.1.1@53(UDP) in 28.2 ms