GTM - strange TCP dump for DNS traffic

I have recently delegated some domains to my GTMs and we are seeing some DNS problems.

 

When doing a TCP dump on the GTM I see some weird responses.

 

For example, this is a normal DNS request then response for one of our wideIPs

 

09:45:44.562679 IP 74.125.16.80.65457 > 103.7.xxx.xxx.53: 33508 [1au] A? portal.mycompany.com. (48)

 

09:45:44.562713 IP 103.7.xxx.xxx.53 > 74.125.16.80.65457: 33508*- 1/0/1 A 103.7.xxx.xxx (64)

 

So you can see the request for the A record of portal.mycompany.com and the response with the corresponding IP address

 

 

Now here is the weird one:

 

09:42:33.529734 IP 202.154.123.97.32646 > 103.7.xxx.xxx.53: 34936 A? onlinestorage.mycompany.com. (44)

 

09:42:33.529756 IP 103.7.xxx.xxx.53 > 202.154.123.97.32646: 34936*- 1/0/0 (60)

 

See how the responce from the GTM does not include the A record IP address?

 

Any suggestions here? The WideIP is in a UP status and has no problems..

 

But the TCP dump here seems to indicate something weird going on.

 

thanks.