Work in progress!

Follow IntoDNS on Twitter


Category Status Test name Information
Parent Info Domain NS records Nameserver records returned by the parent servers are:

ns-1234.awsdns-26.org.   ['205.251.196.210'] (NO GLUE)   [TTL=172800]
ns-1997.awsdns-57.co.uk.   ['205.251.199.205'] (NO GLUE)   [TTL=172800]
ns-391.awsdns-48.com.   ['205.251.193.135'] (NO GLUE)   [TTL=172800]
ns-925.awsdns-51.net.   ['205.251.195.157'] (NO GLUE)   [TTL=172800]

c.nic.tv was kind enough to give us that information.

Pass TLD Parent Check Good. c.nic.tv, the parent server I interrogated, has information for your TLD. This is a good thing as there are some other domain extensions like "co.us" for example that are missing a direct check.
Pass Your nameservers are listed Good. The parent server c.nic.tv has your nameservers listed. This is a must if you want to be found as anyone that does not know your DNS servers will first ask the parent nameservers.
Info DNS Parent sent Glue The parent nameserver c.nic.tv is not sending out GLUE for every nameservers listed, meaning he is sending out your nameservers host names without sending the A records of those nameservers. It's ok but you have to know that this will require an extra A lookup that can delay a little the connections to your site. This happens a lot if you have nameservers on different TLD (domain.com for example with nameserver ns.domain.org.)
Pass Nameservers A records Good. Every nameserver listed has A records. This is a must if you want to be found.
NS Info NS records from your nameserversNS records got from your nameservers listed at the parent NS are:

ns-1234.awsdns-26.org  ['205.251.196.210']   [TTL=172800]
ns-1997.awsdns-57.co.uk  ['205.251.199.205']   [TTL=172800]
ns-391.awsdns-48.com  ['205.251.193.135']   [TTL=172800]
ns-925.awsdns-51.net  ['205.251.195.157']   [TTL=172800]

Pass Recursive Queries Good. Your nameservers (the ones reported by the parent server) do not report that they allow recursive queries for anyone.
Pass Same Glue The A records (the GLUE) got from the parent zone check are the same as the ones got from your nameservers. You have to make sure your parent server has the same NS records for your zone as you do according to the RFC. This tests only nameservers that are common at the parent and at your nameservers. If there are any missing or stealth nameservers you should see them below!
Information Glue for NS records INFO: GLUE was not sent when I asked your nameservers for your NS records.This is ok but you should know that in this case an extra A record lookup is required in order to get the IPs of your NS records. The nameservers without glue are:
205.251.196.210
205.251.195.157
205.251.199.205
205.251.193.135
You can fix this for example by adding A records to your nameservers for the zones listed above.
Pass Mismatched NS records OK. The NS records at all your nameservers are identical.
Pass DNS servers responded Good. All nameservers listed at the parent server responded.
Pass Name of nameservers are valid OK. All of the NS records that your nameservers report seem valid.
Pass Multiple Nameservers Good. You have multiple nameservers. According to RFC2182 section 5 you must have at least 3 nameservers, and no more than 7. Having 2 nameservers is also ok by me.
Pass Nameservers are lame OK. All the nameservers listed at the parent servers answer authoritatively for your domain.
Pass Missing nameservers reported by parent OK. All NS records are the same at the parent and at your nameservers.
Pass Missing nameservers reported by your nameservers OK. All nameservers returned by the parent server c.nic.tv are the same as the ones reported by your nameservers.
Pass Domain CNAMEs OK. RFC1912 2.4 and RFC2181 10.3 state that there should be no CNAMEs if an NS (or any other) record is present.
Pass NSs CNAME check OK. RFC1912 2.4 and RFC2181 10.3 state that there should be no CNAMEs if an NS (or any other) record is present.
Pass Different subnets OK. Looks like you have nameservers on different subnets!
Pass IPs of nameservers are public Ok. Looks like the IP addresses of your nameservers are public. This is a good thing because it will prevent DNS delays and other problems like
Pass DNS servers allow TCP connection OK. Seems all your DNS servers allow TCP connections. This is a good thing and useful even if UDP connections are used by default.
Pass Different autonomous systems OK. It seems you are safe from a single point of failure. You must be careful about this and try to have nameservers on different locations as it can prevent a lot of problems if one nameserver goes down.
Pass Stealth NS records sent Ok. No stealth ns records are sent
SOA Info SOA recordThe SOA record is:
Primary nameserver: ns-925.awsdns-51.net
Hostmaster E-mail address: awsdns-hostmaster.amazon.com
Serial #: 1
Refresh: 7200
Retry: 900
Expire: 1209600   2 weeks
Default TTL: 86400
Pass NSs have same SOA serial OK. All your nameservers agree that your SOA serial number is 1.
Pass SOA MNAME entry OK. ns-925.awsdns-51.net That server is listed at the parent servers.
Pass SOA Serial Your SOA serial number is: 1. The recommended format (per RFC1912 2.2) is YYYYMMDDnn, where 'nn' is the revision.
Your SOA serial appears to be the number of seconds since midnight 01 Jan 1970 when the last DNS change was made. That seems to be 1969/12/31 18:0:1
Pass SOA REFRESH OK. Your SOA REFRESH interval is: 7200. That is OK
Pass SOA RETRY Your SOA RETRY value is: 900. Looks ok
Pass SOA EXPIRE Your SOA EXPIRE number is: 1209600.Looks ok
Pass SOA MINIMUM TTL Your SOA MINIMUM TTL is: 86400. This value was used to serve as a default TTL for records without a given TTL value and now is used for negative caching (indicates how long a resolver may cache the negative answer). RFC2308 recommends a value of 1-3 hours. Your value of 86400 is OK.
MX Info MX RecordsYour MX records that were reported by your nameservers are:

10   inbound-smtp.us-east-1.amazonaws.com   54.197.5.236 44.210.166.32 3.211.210.226 54.164.173.191 44.206.9.87 (no glue)

[These are all the MX records that I found. If there are some non common MX records at your nameservers you should see them below. ]
Pass Different MX records at nameservers Good. Looks like all your nameservers have the same set of MX records. This tests to see if there are any MX records not reported by all your nameservers and also MX records that have the same hostname but different IPs
Pass MX name validity Good. I did not detect any invalid hostnames for your MX records.
Pass MX IPs are public OK. All of your MX records appear to use public IPs.
Pass MX CNAME Check OK. No problems here.
Pass MX A request returns CNAME OK. No CNAMEs returned for A records lookups.
Pass MX is not IP OK. All of your MX records are host names.
Pass Number of MX records OK. Looks like you only have one MX record at your nameservers but that MX record has multiple IPs. You should be careful about what you are doing but overall it's ok.
Pass Mismatched MX A OK. I did not detect differing IPs for your MX records.
Pass Duplicate MX A records OK. I have not found duplicate IP(s) for your MX records. This is a good thing.
Pass Reverse MX A records (PTR) Your reverse (PTR) record:
226.210.211.3.in-addr.arpa ->  ec2-3-211-210-226.compute-1.amazonaws.com
236.5.197.54.in-addr.arpa ->  ec2-54-197-5-236.compute-1.amazonaws.com
191.173.164.54.in-addr.arpa ->  ec2-54-164-173-191.compute-1.amazonaws.com
32.166.210.44.in-addr.arpa ->  ec2-44-210-166-32.compute-1.amazonaws.com
87.9.206.44.in-addr.arpa ->  ec2-44-206-9-87.compute-1.amazonaws.com
You have reverse (PTR) records for all your IPs, that is a good thing.
WWW Info WWW A Record Your www.okast.tv A record is:
www.okast.tv  [3.125.95.68]  [35.157.81.240] 
Pass IPs are public OK. All of your WWW IPs appear to be public IPs.
Pass WWW CNAME OK. No CNAME

Processed in 0.288 seconds.