DNS resolution for some domains fail but dig +tcp works

1

On my home internet connection, I'm able to resolve most domains but none of the sub-domains of cloudfront.net resolve.

$ dig @8.8.8.8 resolver-identity.cloudfront.net

; <<>> DiG 9.9.5-3-Ubuntu <<>> @8.8.8.8 resolver-identity.cloudfront.net
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached

However, I'm able to resolve it on TCP.

$ dig @8.8.8.8 resolver-identity.cloudfront.net +tcp

; <<>> DiG 9.9.5-3-Ubuntu <<>> @8.8.8.8 resolver-identity.cloudfront.net +tcp
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 21121
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;resolver-identity.cloudfront.net. IN   A

;; ANSWER SECTION:
resolver-identity.cloudfront.net. 9 IN  A   74.125.190.147

;; Query time: 46 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Mon Jun 30 11:26:14 IST 2014
;; MSG SIZE  rcvd: 77

What could be going wrong? How can work around this?

Chandra Sekar

Posted 2014-06-30T06:00:02.667

Reputation: 143

No answers

Asked: 2014-06-30T06:00:02.667

Viewed: 314 times

Active: 2014-06-30T06:00:02.667