Recursive internet queries don't work for some domains

I have a Windows 2008 native domain.  I have 3 writable DC with active directory integrated DNS.  I have no forwarders nor conditional forwarders.

Every 6 months or so one of the techs will come to me with a "User can't reach this site" or in this recent case, mail is being returned NDR.  It's usually some government URL.  In this last case I ran a quick connectivity test of the hostname, mail.richmondgov.com.  He was sending mail to someone@richmondgov.com so I guessed mail.richmondgov.com would be their mail server.

I can't get dns for that domain.  I had to go to an external site to get nslookup resolution.

Non-authoritative answer:
 Name:	mail.richmondgov.com
 Address: 65.242.35.168

I also did a type mx lookup to confirm that's actually their mail server.  Then an NS server lookup (all from an external site) to get the name servers.

Non-authoritative answer: richmondgov.com nameserver = dino.ci.richmond.va.us. richmondgov.com nameserver = density.ci.richmond.va.us.

From my server, I can get resolution for their name servers hostnames.

Non-authoritative answer:
DNS request timed out.
    timeout was 2 seconds.
Name:    dino.ci.richmond.va.us
Address:  65.242.35.164

Am at a loss as to why i can't get any resolution for richmondgov.com but external sources can.  I'm %99.9 sure there is nothing wrong with my DNS configuration.  It works all year long for everything else.  But every 6 months or so 1 domain will have an issue like this.

I turned on logging and this is what was shown..

6/11/2012 1:40:55 PM 093C PACKET  00000000045413F0 UDP Rcv 192.168.20.99   0002   Q [0001   D   NOERROR] A     (4)mail(11)richmondgov(3)com(4)ibts(3)org(0)

6/11/2012 1:40:55 PM 093C PACKET  00000000045413F0 UDP Snd 192.168.20.99   0002 R Q [8385 A DR NXDOMAIN] A     (4)mail(11)richmondgov(3)com(4)ibts(3)org(0)

6/11/2012 1:40:55 PM 093C PACKET  0000000002CC2810 UDP Rcv 192.168.20.99   0003   Q [0001   D   NOERROR] AAAA  (4)mail(11)richmondgov(3)com(4)ibts(3)org(0)

6/11/2012 1:40:55 PM 093C PACKET  0000000002CC2810 UDP Snd 192.168.20.99   0003 R Q [8385 A DR NXDOMAIN] AAAA  (4)mail(11)richmondgov(3)com(4)ibts(3)org(0)

6/11/2012 1:40:55 PM 093C PACKET  00000000034B8D60 UDP Rcv 192.168.20.99   0004   Q [0001   D   NOERROR] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:40:55 PM 093C PACKET  0000000004179160 UDP Snd 65.242.35.164   5716   Q [0000       NOERROR] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:40:57 PM 0944 PACKET  00000000035268A0 UDP Rcv 192.168.20.99   0005   Q [0001   D   NOERROR] AAAA  (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:40:57 PM 0944 PACKET  0000000002CC2810 UDP Snd 65.242.35.165   1feb   Q [0000       NOERROR] AAAA  (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:40:59 PM 0748 PACKET  0000000004179160 UDP Snd 65.242.35.165   5716   Q [0000       NOERROR] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:41:01 PM 0748 PACKET  0000000002CC2810 UDP Snd 65.242.35.164   1feb   Q [0000       NOERROR] AAAA  (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:41:03 PM 0748 PACKET  0000000004179160 UDP Snd 192.35.51.30    5236   Q [0000       NOERROR] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:41:03 PM 0944 PACKET  0000000003380BF0 UDP Rcv 192.35.51.30    5236 R Q [0080       NOERROR] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:41:03 PM 0944 PACKET  00000000034B8D60 UDP Snd 192.168.20.99   0004 R Q [8281   DR SERVFAIL] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:41:05 PM 0748 PACKET  0000000002CC2810 UDP Snd 192.35.51.30    431d   Q [0000       NOERROR] AAAA  (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:41:05 PM 0944 PACKET  0000000003C14150 UDP Rcv 192.35.51.30    431d R Q [0080       NOERROR] AAAA  (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:41:05 PM 0944 PACKET  00000000035268A0 UDP Snd 192.168.20.99   0005 R Q [8281   DR SERVFAIL] AAAA  (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:42:00 PM 093C PACKET  0000000003E0C2C0 UDP Rcv 192.168.20.99   0002   Q [0001   D   NOERROR] A     (4)mail(11)richmondgov(3)com(4)ibts(3)org(0)

6/11/2012 1:42:00 PM 093C PACKET  0000000003E0C2C0 UDP Snd 192.168.20.99   0002 R Q [8385 A DR NXDOMAIN] A     (4)mail(11)richmondgov(3)com(4)ibts(3)org(0)

6/11/2012 1:42:00 PM 093C PACKET  0000000004B5A6A0 UDP Rcv 192.168.20.99   0003   Q [0001   D   NOERROR] AAAA  (4)mail(11)richmondgov(3)com(4)ibts(3)org(0)

6/11/2012 1:42:00 PM 093C PACKET  0000000004B5A6A0 UDP Snd 192.168.20.99   0003 R Q [8385 A DR NXDOMAIN] AAAA  (4)mail(11)richmondgov(3)com(4)ibts(3)org(0)

6/11/2012 1:42:00 PM 093C PACKET  00000000032FFDE0 UDP Rcv 192.168.20.99   0004   Q [0001   D   NOERROR] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:42:00 PM 093C PACKET  0000000002FD8D60 UDP Snd 65.242.35.165   b0b3   Q [0000       NOERROR] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:42:07 PM 093C PACKET  0000000004999890 UDP Rcv 192.168.44.253  6f50   Q [0001   D   NOERROR] PTR   (3)125(2)87(3)145(2)64(7)in-addr(4)arpa(0)

6/11/2012 1:42:07 PM 0748 PACKET  0000000002FD8D60 UDP Snd 192.35.51.30    0203   Q [0000       NOERROR] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:42:07 PM 093C PACKET  00000000036B8D60 UDP Rcv 192.35.51.30    0203 R Q [0080       NOERROR] A     (4)mail(11)richmondgov(3)com(0)

6/11/2012 1:42:07 PM 093C PACKET  00000000032FFDE0 UDP Snd 192.168.20.99   0004 R Q [8281   DR SERVFAIL] A     (4)mail(11)richmondgov(3)com(0)

Anyway, i'm at a loss..