reverse named setup
Paul Howarth
paul at city-fan.org
Tue Nov 15 11:02:55 UTC 2005
W.L. C wrote:
> My ISP has allow 64 IPs to me. Delegate forward and reverse zone to me
> too as 64/26.73.52.10.in-addr.arpa.
This is an example of classless in-addr.arpa delegation as described in
RFC 2317. Read the RFC for further details.
> How do I configure named to do
> reserve lookup for myself and I am running on a FC4 machine. Below are
> some of what i had tried to do. Please take note, all IPs and domain are
> not mine. Just an example. Thanks.
>
> named.conf
>
> options {
> directory "/var/named";
> };
> zone "." IN {
> type hint;
> file "named.local";
> };
> zone "64/26.73.52.10.in-addr.arpa" IN {
> type master;
> file "64.26.73.52.10.in-addr.arpa";
> };
OK so far.
> zone "70.73.52.10.in-addr.arpa" IN {
> type master;
> file "10.52.73.70";
> };
This zone is the responsibility of your ISP, not you, so you don't want
or need this one. Your ISP should have a bunch of CNAME records in this
zone that point into your zone, such as:
64.73.52.10.in-addr.arpa. CNAME 64.64/26.73.52.10.in-addr.arpa.
65.73.52.10.in-addr.arpa. CNAME 65.64/26.73.52.10.in-addr.arpa.
66.73.52.10.in-addr.arpa. CNAME 66.64/26.73.52.10.in-addr.arpa.
67.73.52.10.in-addr.arpa. CNAME 67.64/26.73.52.10.in-addr.arpa.
If you had used real IP addresses then I could have checked that these
were in place. Diagnosing DNS problems is very difficult if you
obfuscate things by changing names/addresses. If you need to follow up
in this thread, please use real names and addresses.
> zone "dns1.mydomain.com" IN {
> type master;
> file "dns1.mydomain.com";
> };
Surely you mean:
zone "mydomain.com" IN {
type master;
file "mydomain.com";
};
> include "/etc/rndc.key";
>
> ---------------------------------------------------------------------------
>
> /var/named/dns1.mydomain.com
>
> $TTL 86400
> @ IN SOA dns1.mydomain.com. postmaster.mydomain.com. (
> 2005110501
> 3600
> 7200
> 864000
> 86400 )
>
> IN NS dns1.mydomain.com.
> IN NS dns2.mydomain.com.
>
> IN MX 5 dns1.mydomain.com.
>
> IN A 10.52.73.70
> ftp IN A 10.52.73.70
> mail IN A 10.52.73.70
> pop IN A 10.52.73.70
> dns2 IN A 10.52.73.80
Here you have specified A records for hosts such as
ftp.dns1.mydomain.com, dns2.dns1.mydomain.com rather than
ftp.mydomain.com and dns2.mydomain.com, because of the error in the zone
specification above. You probably want:
/var/named/mydomain.com
$TTL 86400
@ IN SOA dns1.mydomain.com. postmaster.mydomain.com. (
2005111501
1H
2H
240H
24H )
NS dns1
NS dns2
MX 5 dns1
dns1 A 10.52.73.70
ftp A 10.52.73.70
mail A 10.52.73.70
pop A 10.52.73.70
dns2 A 10.52.73.80
> /var/named/64.26.73.52.10.in-addr.arpa
>
> $TTL 86400
> @ IN SOA dns1.mydomain.com. postmaster.mydomain.com. (
> 2005083107
> 3600
> 7200
> 864000
> 86400 )
>
> IN NS
> dns1.mydomain.com.
> IN NS
> dns2.mydomain.com.
>
> 64/26.73.52.10.in-addr.arpa IN NS dns1.mydomain.com.
> 64/26.73.52.10.in-addr.arpa IN NS dns2.mydomain.com.
>
> 70.64/26.73.52.10.in-addr.arpa IN PTR dns1.mydomain.com.
> 76.64/26.73.52.10.in-addr.arpa IN PTR dns1.domain2.com.
> 77.64/26.73.52.10.in-addr.arpa IN PTR another.domain..which.is.on.another.box.com.
> 77.64/26.73.52.10.in-addr.arpa IN PTR another.domains.on.another.box.com.
> 80.64/26.73.52.10.in-addr.arpa IN PTR dns2.mydomain.com.
Here you are specifying too much data on the left side; the origin of
this zone is 64/26.73.52.10.in-addr.arpa so you should not repeat this
information in the zone file. What you want is:
$TTL 86400
@ IN SOA dns1.mydomain.com. postmaster.mydomain.com. (
2005111501
1H
2H
240H
24H )
NS dns1
NS dns2
70 PTR dns1.mydomain.com.
76 PTR dns1.domain2.com.
77 PTR another.domain..which.is.on.another.box.com.
78 PTR another.domains.on.another.box.com.
80 PTR dns2.mydomain.com.
> /var/named/10.52.73.70
This zone should be on your ISP's nameservers, not yours. You don't need
this file.
Paul.
More information about the fedora-list
mailing list