This is more of a general troubleshooting question as we do a lot of forwarding with our Microsoft DNS servers. I have some clients where I can do the following commands and it works, and same commands fail for others. My guess is maybe a firewall is not letting the results return to the problematic clients? I always thought that once I connected to an external DNS server it showed that my connection to 53 was open. Network speeds for everything should be extremely fast
problematic clients
>nslookup
>server 8.8.8.8
Default server: google-public-dns-a.google.com
DNS request timed out.
timeout was 2 seconds.
I also noticed that when the "working" clients query our primary forwarders(ns1.viawest.net) for the domain with the same query, I get "served by" and a list of the root hints instead of resolving the query. If I query 8.8.8.8 with the same "working" client, then I do get a non-authoritative answer. The type of query is set to A for both queries, but I am guessing the list of root hints is an iterative respose? Not looking for documentation on how recursion works, but just trying to troubleshoot the different answers I am seeing
Dave