v11.3.0: How to get DNS lookup work in an irule?

Are you using the @IP or @[virtual name] syntax to point the DNS query at a specific external DNS server? You should not need to point to the local BIND instance.

I did try using an external DNS server by using @ip, but it always timed out. The same address works in the management plane, but does not work in the data plane - in the irule. That is why I tried and got it work on v10.2.4 by making it use the local bind server. No such luck on v11.3.0, though.

Can you do a tcpdump to see where and if the port 53 traffic is leaving the box? It may be a routing issue.

I did this:

 tcpdump -nni 0.0:nnn -s0 port 53

but it did not capture anything, not even the traffic of dig.

 tcpdump -nni eth0 -s0 port 53

This captures the traffic from running dig:

tcpdump: WARNING: eth0: no IPv4 address assigned
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
11:55:58.205093 IP 172.21.197.14.50776 > 172.18.240.210.53:  41681+ A? www.sina.cn. (29)
11:55:58.500352 IP 172.18.240.210.53 > 172.21.197.14.50776:  41681 2/2/2 CNAME sina.cn., A 203.90.242.118 (136)

but does not capture any packets when the irule is run.

It turned out that appending route domain ID made it work, e.g.:

[RESOLV::lookup @10.10.10.10%1 -a host_name]

Not sure why this is required: Shouldn't it default to the partition's default route domain?

I'm getting the same problem. All the RESOLV:lookup queries returns no data. Any help is welcome