you mey get the following warning when trying to query with dig:
; <<>> DiG 9.16.37-Debian <<>> domain.tld ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: FORMERR, id: 34429 ;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; WARNING: recursion requested but not available
DIG sends DNS COOKIE option, this option is enabled by default starting with BIND 9.11. Unfortunately, the query with this option means that the DNS server, often older Windows DNS servers, treats the request as incorrect, or does not understand the query, which means that the request is rejected.
A workaround can be to pass the
+noedn to disable the EDNS option.
$ dig domain.tld +nocookie