|
I amended my comment to include group policies, which can do strange things to a machine.
Check out my IoT graphics library here:
https://honeythecodewitch.com/gfx
And my IoT UI/User Experience library here:
https://honeythecodewitch.com/uix
|
|
|
|
|
That's true... and which domain you are logging onto and whether you're "inhouse" or ingressing through a VPN or something could change which get applied. It could send you to different DNS servers (to help hide internal resources in domains that were more "edge"-closer to DMZ).
|
|
|
|
|
The only difference is a different Wi-Fi (shared with other tenants).
We don't have a work network, domain controller, etc.
|
|
|
|
|
Well I guess the good news is that simplifies the situation considerably.
The bad news is I have no idea what your next troubleshooting move should be.
Check out my IoT graphics library here:
https://honeythecodewitch.com/gfx
And my IoT UI/User Experience library here:
https://honeythecodewitch.com/uix
|
|
|
|
|
It's not the Azure network gateway is it? Last weekend working away from home and needed to rdc into an Azure VM meant that I had to add the IP address where I was connected to the inbound Accept rules in order to connect. Just a thought... Good luck!
"Go forth into the source" - Neal Morse
"Hope is contagious"
|
|
|
|
|
Sander Rossel wrote: but my web app can't access the service ("no such host is known")...("no such host is known").
This is not a "service" problem.
It is a connectivity problem.
So you need to diagnose that and stop focusing on the service.
In the modern era you can and probably should always start with diagnosing connectivity using telnet.
Since all modern sites use IP/TCP telnet is an excellent tool to test that.
If you can connect via telnet then there is no connectivity issue. If not then there is. It is just that simple. Nothing else matters in that context. For example SSL/TLS has no impact on it.
Looks like you are also using a host name and not an IP address. You can use a DNS lookup tool like 'nslookup' to determine the IP.
DNS processing is a separate service which can fail all by itself. If you can verify the look up then after that you should use the IP only since it removes that extra service lookup (and failure possibility.) Again you use telnet with the IP to check.
Now if you verify that it is not a connectivity issue then you can look at the service. For example firewall rules can block specific http requests.
Also commenting on the thing about the hosts file and browsers. That was curious so I looked that up and found the following which doesn't make it all that clear what might be expected.
https://stackoverflow.com/questions/42636711/google-chrome-ignoring-hosts-file[^]
But what is clear is that using the IP makes al of that irrelevant.
As one other bit of advice when using the browser - do not leave any open browser windows when testing. So no other sites. Despite things like incognito it still caches stuff. So every single browser must be closed. Or at least that was true a few years ago.
|
|
|
|
|
It's the devil's work.
"A little time, a little trouble, your better day"
Badfinger
|
|
|
|
|
Sander Rossel wrote: When I'm at home, it works.
When I'm at home and on VPN it doesn't work.
It works with and without VPN for my coworker, but only from home.
At the office, it doesn't work with or without VPN for both of us. When something is all over the place like this, it's best to remove as many variables as possible. As such, if not yet done, a traceroute should be done in each and every environment both on and off the VPN. It could be anything from your coworker updating his hosts file without saying so or even a regional thing where you're hitting a different server. Who knows, but a traceroute will help figure that out.
Sander Rossel wrote: We've deployed both in an Azure app service with the subdomain properly registered in the DNS and a valid certificate. Exactly how though? A local or localhost domain generally doesn't go through DNS. I mean it can, but it's typically considered private. Is this a public DNS server or something internal only?
Sander Rossel wrote: When I remove the subdomain everything works. This is what I'm guessing the issue is. It's just a guess, but in DNS lingo a subdomain is a typically CNAME. A top level domain is an A record usually. If you try to add a "sub domain" as an A/SOA record, that's considered advanced and not needed for most situations where you're running things on the same server.
So perhaps Azure (assuming this is a public DNS server) just isn't happy with the way it was entered.
Jeremy Falcon
|
|
|
|
|
Jeremy Falcon wrote: Exactly how though? A local or localhost domain generally doesn't go through DNS. I mean it can, but it's typically considered private. Is this a public DNS server or something internal only? Yeah, that one isn't called localhost, obviously
sub.client.nl registered using CNAME.
Azure is quite strict about that kind of stuff.
|
|
|
|
|
That makes the whole situation even more confusing then... because if that's not the case then you're not using an DNS server at all. Yes, DNS supports a hosts file as part of the protocol but that's not the same thing as a server... which means every config is on a per machine basis.
Guessing this is your first time doing this? When I find myself overwhelmed I usually start again from scratch and take it one step at a time while ensuring every step along the way is working and verified. Perhaps that'll help?
Jeremy Falcon
|
|
|
|
|
Also, you should flush the DNS cache on every machine that attempts to access anything before even thinking about troubleshooting. DNS propagation isn't too long of a wait, but it's most certainly not instant. So, if you're debugging something, always flush your DNS cache first.
For Windows it's ipconfig /flushdns .
Also, it wouldn't hurt to know the TTL for the DNS server in question for each machine. This assuming you're not using your ISPs DNS server, which you most likely are. Although some ISPs will list their TTL.
Note, this doesn't apply to a host file, but it most certainly does for a DNS server.
Jeremy Falcon
|
|
|
|
|
A while ago, I had a test site setup with both A and AAAA records in DNS. Worked fine "from home", failed to connect "via VPN".
Guess what: My VPN config had IPv6 disabled, but still tried to connect using the AAAA IPv6 address.
|
|
|
|
|
tracert shows different paths to the domain?
|
|
|
|
|
So, were you able to sort this out?
I wouldn't mix in the localhost issue, it is probably something different and I'm assuming the goal is to have the Azure service running.
Have you run the sub through a DNS checker? I'm assuming you are using azure-dns.net as the DNS.
|
|
|
|
|
Hello,
I don't know whether you've solved this yet, and I'm definitely NOT the person to solve it. BUT: there was a comment about using nslookup to examine the actual DNS resolution.
And, also know that windows loads several default values into the routing table when you boot, and may retain some of these on reboots. You'll want to flush the table (as admin: netsh interface ip delete destinationcache).
Also know that there are a number of special-use domain names and extensions used for for the internet at large: see rfc6761.
"Works on my machine" is humorous adage for a reason.
Good luck.
Time is the differentiation of eternity devised by man to measure the passage of human events.
- Manly P. Hall
Mark
Just another cog in the wheel
|
|
|
|
|
Wordle 1,084 4/6*
⬜⬜🟨⬜🟨
🟨🟨⬜🟨⬜
🟨🟩🟨🟩🟩
🟩🟩🟩🟩🟩
"I have no idea what I did, but I'm taking full credit for it." - ThisOldTony
"Common sense is so rare these days, it should be classified as a super power" - Random T-shirt
AntiTwitter: @DalekDave is now a follower!
|
|
|
|
|
Wordle 1,084 2/6
⬜⬜⬜🟨🟨
🟩🟩🟩🟩🟩
|
|
|
|
|
Wordle 1,084 4/6
⬜🟨⬜⬜🟨
⬜⬜🟩🟨⬜
⬜🟩🟩🟩⬜
🟩🟩🟩🟩🟩
|
|
|
|
|
⬜⬜⬜🟨🟨
⬜⬜🟨⬜⬜
⬜⬜🟨🟩🟩
⬜🟩🟨🟩🟩
🟩🟩🟩🟩🟩
In a closed society where everybody's guilty, the only crime is getting caught. In a world of thieves, the only final sin is stupidity. - Hunter S Thompson - RIP
|
|
|
|
|
Wordle 1,084 4/6*
⬜🟨⬜⬜🟨
⬜🟨⬜🟨🟨
⬜🟩🟩⬜🟨
🟩🟩🟩🟩🟩
Happiness will never come to those who fail to appreciate what they already have. -Anon
And those who were seen dancing were thought to be insane by those who could not hear the music. -Frederick Nietzsche
|
|
|
|
|
Wordle 1,084 4/6
⬛🟨🟨🟨⬛
🟩🟨🟨⬛⬛
🟩🟩⬛🟩🟩
🟩🟩🟩🟩🟩
Ok, I have had my coffee, so you can all come out now!
|
|
|
|
|
Wordle 1,084 3/6*
⬛⬛🟨🟨🟨
⬛🟨🟨🟨⬛
🟩🟩🟩🟩🟩
|
|
|
|
|
I hope this is not going to be called programming question, but I am running out of non AI forums to post this.( This forum Linux subforum is of no help - this is not programming issue )
I just had a total "no boot" failure of my grub file - working multi-operating system.
( Total power outage / failure caused this)
Ever since I started using Linux Ubuntu I have been unable to figure out HOW TO MAKE FULL DUPLICATE of perfectly working OS. ( Using "DD" command did not work!) I have several HD, space in no issue.
I was hoping use something likes RAID to do this. I am well aware of RAID issues, but I am desperate to have this resolved before another catastrophic failure.
PS
This time my working grub recovered because another , non used , but operational Ubuntu grub file was "updated/ upgraded".
|
|
|
|
|
I think the title of your post is hilarious because it sounds so much like when people ask (quite frequently,) "How to solve this problem?" and it's a question that would take pages and pages to answer.
The difficult we do right away...
...the impossible takes slightly longer.
|
|
|
|
|
Perhaps I am on wrong planet- I was under the impression this forum, in particular, was in existence to help solve problems. I guess I am wrong ... again.
But I do appreciate your post for staying on the subject and
you not telling me to RTFM or "get an new one ".
Hope somebody will take "the first baby step" to start the mentioned pages leading to solution.
PS
Just went thru few "fsck" to fully (?) recover from the grub failure...
|
|
|
|