I have an issue with the last step of DNS delegation by the root servers.
I have transferred a domain from registrar A to registrar B a couple of months back and forgot about it, until I had to change the DNS records to reflect our new server location and noticed that nothing updated until I changed it in the panel of our old provider.
This is what it currently looks like:
Panel of OLD PROVIDER:
euro-business.de. IN SOA ns1.antagus.de
euro-business.de. IN NS ns1.antagus.de
euro-business.de. IN NS ns2.antagus.de
euro-business.de. IN A 78.46.57.101
euro-business.de. IN MX mx.examplemx.com
Panel of NEW PROVIDER:
euro-business.de. IN SOA ns1.antagus.de
euro-business.de. IN NS ns1.antagus.de
euro-business.de. IN NS ns2.antagus.de
euro-business.de. IN A 82.98.201.230
euro-business.de. IN MX 10 mx.examplemx.com
When I do a DNS delegation check and query root DNS servers, I get 78.46.57.101
as a result, which is the old and thus incorrect A record. All DNS root servers report ns1.fastdns.de
as the authoritative DNS server, which is wrong!
If I query ns1.antagus.de
using dig, I get the correct results. The root servers however point to the incorrect NS and A records.
I've tried everything I know, including updating the records and on the old and new panel, but it doesn't seem to get to the root servers. I'd appreciate some help. If you need the domain in question, it's euro-business.de and it should point to ns1.antagus.de and ns2.antagus.de for the name servers.
Best Answer
When troubleshooting DNS issues, ask the authoritative nameserver first.
Here you should start at the registry.
This gives you which nameservers are authoritative at the registry (.DE):
(this was a shortcut, in theory you would have to ask the root servers to know the list of .DE nameservers, here I am just using my local recursive nameserver and trusting it).
Now you can contact any of this nameserver (they should all reply the same thing for the same query) and ask it about your domain name. You are interested only in the "AUTHORITY SECTION" so here it goes:
Those are the nameservers you need to query about your domain name.
And they say:
At the end of the day, it seems you changed your authoritative nameservers at some point from
to
And each set of nameservers was not serving the exact same information.
So while there is technically no propagation, but still time to wait, you may not have waited enough (or could have avoided the problem altogether by first changing the IP address in the old nameservers then, after waiting some time again, changing nameservers).
Why some time? Because it depends on the TTL but:
PS: "I have an issue with the last step of DNS delegation by the root servers." This is surely not the case. At most you could say something about .DE TLD servers, but there is nothing about your problem that is related to root servers, the one dealing with the
.
zone that hosts only nameservers for TLDs. Note also that typically registrar changes have no consequences on the DNS side of things (because the registrar is changed without any change to the nameservers) except of course if you used your previous registrar also as a DNS provider, but this is certainly not mandatory.