Post to close this out
https://github.com/tailscale/tailscale/issues/9948
Thanks @neemobeer for jumping in and helping me. I was preping USB reinstall key.. which would have cost me two weeks to reset things.. so this was a help.
Lightbulb just went off.
WTF
100.100.100.100 for Target
UGH
Who the Heck is that... gooogled.. tailscale -> I tried this months back and removed because I did not have time to play with it and build ROI... but that was weeks agoo... it was uninstalled... but googling 100.100.100.100...
Infoblox VMs / system out of picture. I just noted those as part of debug (is it that one DNS / AD node being stupid .. lets try my Infoblox local DNS servers.... Nope... no change)
As for logs from the AD DNS which is 172.16.100.22 single SOA for zone penguinpages.local
I enabled DNS debug...
the zone issue is now direct within top level zone .
My home lab high level zone is "penguinpages.local" and A and PTR for that zone fail. So its now not just one odd subzone.. but my primary home lab (no more VPN in frey either).
So something I or some client is doing to blackhole the...
in this example.. now that its not just one subdomain connected over VPN:
Ex: VPN to lab
labs.local (top level intranet domain) -> success all a and ptr
cnan.labs.local -> success sub domain to separate AD hosts
ps.labs.local -> black hole.. no packets even show up in Wireshark
Now... a...
Standard DHCP lease from my router. Which points to local single AD node.
I can also flip it to my pair of Infoblox VMs which host the lab stuff.. both DNS which are SOA for penguinages.local (no sync just ignorant of eachother) but same results.
I have flipped between them and no...
Thanks for response. Good ideas and I did not think about adding dig into windows.
Plot thickens.
I enabled pcap on Gb NIC. I also ran a traceroute and I can see NSLookup / dig go out for IPs that work fine (other domains and sub domains. But any domain in the current "black hole" no...
First posting on this forum. Trying to find a Windows forum willing to help debug and respond. Seems this is at least active. So .. greetings.
This is a repost... posted it on various Windows forums but no responses .. Problem continues .. been a few weeks
Full Posting Here...