To help clarify further:
Q1 Don't .com and .net use the same root server systems?
Q2 Would adding another server from within either of those same two TLDs still help?
Q3 So then switching between those two TLDs would have no net effect?
Like: Changing from six .coms to (three .nets and three .coms)
I added the 2 NS back to infoblox.com and it still works. So I assume those 2 lingering DS keys were enough to send unbound off the deep end. Thanks again guys.
dig @8.8.8.8 infoblox.com NS +short
ns1.infoblox.com.
ns4.infoblox.com.
ns6.infoblox.com.
ns5.infoblox.com.
ns3.infoblox.com.
ns2.infoblox.com.Yes.
Yes, depending on the server. For instance if you added a copy of the zone to Route53, you might wind up with an NS name like ns-959.awsdns-55.net. That would work.
Part of the problem was specific to the infoblox.com domain: that it had exactly 512 bytes of data. It was also dependent on the fact the infoblox.com used in-domain NS records (ns1.infoblox.com), which meant that it needs glue records to be resolvable. However, the .com nameservers were truncating off the glue records without setting the TC bit.
Using an extra NS record under a different domain would mean glue records are not needed (even if that domain is under .com/.net). I'm making the assumption that the other domain wouldn't have the same problem of (A) an exactly-512-bytes zone and (B) in-domain nameservers.
In this case, @thisisbroken solved it another way - by making the zone smaller.
Be sure that is not due to cached authorizations.
Try a different or completely new FQDN.
From the above, it sounds like @thisisbroken is testing on unboundtest.com, which does not cache anything. And we have good reason to believe it will work as is. So I think there is not need to do another test on a completely new FQDN.
I was testing via unboundtest.com. Besides it worked everywhere before all of this so why would I test anywhere else? 
Lack of sleep here - sorry
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.