DNS resolution (e.g. with dig
) works fine in the VMs connected to the internet directly via sys-firewall
but in VMs connected to sys-whonix
, I can not request any DNS entries except A records:
user@host:~$ dig google.com
; <<>> DiG 9.16.22-Debian <<>> google.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29729
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;google.com. IN A
;; ANSWER SECTION:
google.com. 300 IN A 216.58.212.174
;; Query time: 105 msec
;; SERVER: 10.137.0.8#53(10.137.0.8)
;; WHEN: Tue Jan 25 19:39:18 UTC 2022
;; MSG SIZE rcvd: 44
user@host:~$ dig google.com txt
; <<>> DiG 9.16.22-Debian <<>> google.com txt
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOTIMP, id: 30453
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; WARNING: EDNS query returned status NOTIMP - retry with '+noedns'
;; QUESTION SECTION:
;google.com. IN TXT
;; Query time: 0 msec
;; SERVER: 10.137.0.8#53(10.137.0.8)
;; WHEN: Tue Jan 25 19:39:22 UTC 2022
;; MSG SIZE rcvd: 28
Apparently, some DNS server answers the request that does not implement (NOTIMP
) anything else than requests for A records.
Any idea what is going on here or how to fix it? I really want to fetch some TXT
sections…