Normal ou pas?

[Cap Langues]

Bonsoir,
J'ai fait un test par hasard sur DNS report
http://www.dnsreport.com/tools/dnsreport.ch?domain=caplangues.net
http://www.dnsreport.com/tools/dnsreport.ch?domain=caplangues.org

Est-ce normal d'avoir des "fail" et des "warning" ou y a-t-il un soucis avec nos dns?
Pour info, c'est vous qui gérez les noms de domaine.

Merci

[Cap Langues]

Les "fail" en question pour caplangues.net:

FAIL   Open DNS servers   ERROR: One or more of your nameservers reports that it is an open DNS server. This usually means that anyone in the world can query it for domains it is not authoritative for (it is possible that the DNS server advertises that it does recursive lookups when it does not, but that shouldn't happen). This can cause an excessive load on your DNS server. Also, it is strongly discouraged to have a DNS server be both authoritative for your domain and be recursive (even if it is not open), due to the potential for cache poisoning (with no recursion, there is no cache, and it is impossible to poison it). Also, the bad guys could use your DNS server as part of an attack, by forging their IP address. Problem record(s) are:

Server 85.17.101.24 reports that it will do recursive lookups. [test] Server 85.17.101.25 reports that it will do recursive lookups. [test] See this page for info on closing open DNS servers.
FAIL   Mismatched glue   ERROR: Your nameservers report glue that is different from what the parent servers report. This will cause DNS servers to get confused; some may go to the IP provided by the parent servers, while others may get to the ones provided by your authoritative DNS servers. Problem record(s) are:

ns2.caplangues.net.:
Parent server (e.gtld-servers.net) says A record is 85.17.101.25, but
authoritative DNS server (85.17.101.24) says it is 83.133.126.157
ns1.caplangues.net.:
Parent server (e.gtld-servers.net) says A record is 85.17.101.24, but
authoritative DNS server (85.17.101.24) says it is 63.219.151.3
ns1.caplangues.net.:
Parent server (e.gtld-servers.net) says A record is 85.17.101.24, but
authoritative DNS server (85.17.101.25) says it is 63.219.151.3
ns2.caplangues.net.:
Parent server (e.gtld-servers.net) says A record is 85.17.101.25, but
authoritative DNS server (85.17.101.25) says it is 83.133.126.157

et les "warn":

WARN   Nameservers on separate class C's   WARNING: All of your nameservers (listed at the parent nameservers) are in the same Class C (technically, /24) address space, which means that they are probably at the same physical location. Your nameservers should be at geographically dispersed locations. You should not have all of your nameservers at the same location. RFC2182 3.1 goes into more detail about secondary nameserver location.

WARN   Single Point of Failure   WARNING: Although you have at least 2 NS records, they may both point to the same server (neither of our two tests is sure; it appears that there are one or more firewall(s) that intercept and alter DNS packets), which would result in a single point of failure. You are required to have at least 2 nameservers per RFC 1035 section 2.2.

WARN   Mail server host name in greeting   WARNING: One or more of your mailservers is claiming to be a host other than what it really is (the SMTP greeting should be a 3-digit code, followed by a space or a dash, then the host name). If your mailserver sends out E-mail using this domain in its EHLO or HELO, your E-mail might get blocked by anti-spam software. This is also a technical violation of RFC821 4.3 (and RFC2821 4.3.1). Note that the hostname given in the SMTP greeting should have an A record pointing back to the same server. Note that this one test may use a cached DNS record.

mail.caplangues.net claims to be host serverts1.edelweisshosting.net [but that host is at 75.126.133.214 (may be cached), not 85.17.101.24].

[alinghi]

j'ai tester mes noms de domaines
sur mon compte revendeur
et j'ai la meme chose.......

[Cap Langues]

Tant que ça fonctionne, pas de panique, mais bon, j'aimerais tout de même bien savoir si c'est un choix technique ou une erreur dans les dns.
En fait ce que je trouve bizarre c'est surtout les "fail"

En faisant le test sur edel.com j'ai 1 "fail" et quelques "warn"

http://www.dnsreport.com/tools/dnsreport.ch?domain=edelweisshosting.com

[staff]

Bonjour

C'est pas normal. Il y avait des erreurs DNS suite à un transfert. En fait, quand on fait un backup dans Direct Admin, il prend les informations DNS avec. Si on restaure le backup sur un serveur avec des IPs différentes, on se retrouve avec un mélange de nouvelles et d'anciennes IP. On sait cela et  on y fait attention à chaque transfert. Malheureusement, il y a toujours des sites qui passent entre les gouttes. On est entrain d'automatiser le mécanisme par des scripts maisons qui feront qu'il n'y ait plus ce couacs de ce genre.

Merci

[Cap Langues]

Apparemment, vous avez corrigé pour votre domaine, mais pas pour les nôtres!!!

[staff]

Bonjour

Dès votre demande, on a corrigé, mais le technicien n'a pas vu les deux domaines.

Vérifiez maintenant, le DNS Report est plus clean.

Merci