OpenDNS not resolving - Cisco Umbrella

chrismes · ‎07-15-2025

In the last few weeks we have issues with openDNS which does not resolve hosts, but other DNS do.
At the moment it is e.g. frank-meisler.com.
OpenDNS does not resolve, but EU-DNS, Cloudflare and Google-DNS do resolve it.
Paying a lot of money for this Cisco Umbrella crap.

[chris@server ~]$ nslookup frank-meisler.com 208.67.222.222
Server: 208.67.222.222
Address: 208.67.222.222#53

Non-authoritative answer:
*** Can't find frank-meisler.com: No answer

[chris@server ~]$ nslookup frank-meisler.com 208.67.220.220
Server: 208.67.220.220
Address: 208.67.220.220#53

Non-authoritative answer:
*** Can't find frank-meisler.com: No answer

[chris@server ~]$ nslookup frank-meisler.com 86.54.11.100
Server: 86.54.11.100
Address: 86.54.11.100#53

Non-authoritative answer:
Name: frank-meisler.com
Address: 82.180.174.35

[chris@server ~]$ nslookup frank-meisler.com 1.1.1.1
Server: 1.1.1.1
Address: 1.1.1.1#53

Non-authoritative answer:
Name: frank-meisler.com
Address: 82.180.174.35

[chris@server ~]$ nslookup frank-meisler.com 8.8.8.8
Server: 8.8.8.8
Address: 8.8.8.8#53

Non-authoritative answer:
Name: frank-meisler.com
Address: 82.180.174.35

[chris@server ~]$

MHM Cisco World · ‎07-15-2025

What platform you have to redirect dns to openDNS ?

Can you run debup there ?

MHM

chrismes · ‎07-15-2025

It's not a question of the platform.
I just used Linux because it shows "no answer".
I have same issue on Windows.
And I have the problem in the company and also at home (of course at home I normally do not use the openDNS crap) with
different internet providers.

At home from Windows 10 (no response from openDNS):
C:\Users\chris>nslookup frank-meisler.com 208.67.220.220
Server: dns.sse.cisco.com
Address: 208.67.220.220

Name: frank-meisler.com

C:\Users\chris>nslookup frank-meisler.com 208.67.222.222
Server: dns.sse.cisco.com
Address: 208.67.222.222

Name: frank-meisler.com

C:\Users\chris>nslookup frank-meisler.com 86.54.11.100
Server: unfiltered.joindns4.eu
Address: 86.54.11.100

Nicht autorisierende Antwort:
Name: frank-meisler.com
Addresses: 2a02:4780:b:847:0:1a17:25ca:3
82.180.174.35

C:\Users\chris>nslookup frank-meisler.com 1.1.1.1
Server: one.one.one.one
Address: 1.1.1.1

Nicht autorisierende Antwort:
Name: frank-meisler.com
Addresses: 2a02:4780:b:847:0:1a17:25ca:3
82.180.174.35

C:\Users\chris>nslookup frank-meisler.com 8.8.8.8
Server: dns.google
Address: 8.8.8.8

Nicht autorisierende Antwort:
Name: frank-meisler.com
Addresses: 2a02:4780:b:847:0:1a17:25ca:3
82.180.174.35

chrismes · ‎07-15-2025

When capturing with wireshark, I just see this response, when using the openDNS:

User Datagram Protocol, Src Port: 53, Dst Port: 55191
Domain Name System (response)
Transaction ID: 0x0002
Flags: 0x8180 Standard query response, No error
Questions: 1
Answer RRs: 0
Authority RRs: 1
Additional RRs: 0
Queries
Authoritative nameservers
frank-meisler.com: type SOA, class IN, mname ns95.worldnic.com
Name: frank-meisler.com
Type: SOA (6) (Start Of a zone of Authority)
Class: IN (0x0001)
Time to live: 2710 (45 minutes, 10 seconds)
Data length: 47
Primary name server: ns95.worldnic.com
Responsible authority's mailbox: namehost.worldnic.com
Serial Number: 117081917
Refresh Interval: 10800 (3 hours)
Retry Interval: 3600 (1 hour)
Expire limit: 604800 (7 days)
Minimum TTL: 3600 (1 hour)
[Request In: 346]
[Time: 0.012999000 seconds]

MHM Cisco World · ‎07-18-2025

The openDNS return SOA

Which mean either

The domain you ask don't have IP (which you mentioned that yoh try different dns and it resolve)

Or

It filter, i.e. Some body make filter to this request

MHM