SSH Recursive AAAA lookup

Soulou asked:

Given a server “example.com” at 10.0.0.1,[ipv6] with a CNAME *.example.com > example.com
And a second server “staging.example.com” at 10.0.0.2/[ipv6]

if staging tries to SSH to “example2.com” (with ipv6) and that this domain doesn’t have any AAAA field, SSH tries to resolve example2.com.example.com. As it is included in the CNAME > example.com so example2.com will be resolved as the ipv6 of example.com which is completely wrong.

How could I avoid that ?

In a more concrete way, git clone git@github.com:user/repo.git on staging.example.com resolves github.com as the IPv6 of example.com so I’m unable to do anything.

I’m using a clean installation of Ubuntu 12.04.

My answer:


Remove your domain name from the search line in /etc/resolv.conf.


View the full question and answer on Server Fault.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 3.0 Unported License.