Blinded by something
Johnny Fribert Lauridsen
jlaurids at cisco.com
Thu Jul 13 16:56:39 UTC 2000
Thanks,
And NO, I did not do any editing. It was the real thing.
I will try your suggestion,
Thanks,
/Johnny
At 10:46 13/07/2000 -0600, M.Ashcraft at epixtech.com wrote:
>You are using a CNAME on the right hand side of an MX record. you must use
>the real name associated with an A record.
>
>You have two choices.
>Change
>mail1.teliamobile.dk. 86400 CNAME ns.teliamobile.dk.
>mail.teliamobile.dk. 86400 CNAME ns1.teliamobile.dk.
>(I don't see this second line but I think you have been editing)
>To
>mail.teliamobile.dk. 86400 A 62.44.158.10
>mail1.teliamobile.dk. 86400 A 62.44.158.11
>
>OR
>
>Change
>teliamobile.dk. 86400 MX 40 mail.teliamobile.dk.
>teliamobile.dk. 86400 MX 30 mail1.teliamobile.dk.
>To
>teliamobile.dk. 86400 MX 40 ns.teliamobile.dk.
>teliamobile.dk. 86400 MX 30 ns1.teliamobile.dk.
>
>
>Mike
>
>--
>Mike Ashcraft, Sr. Network Engineer
>epixtech, Inc.
>M.Ashcraft at epixtech.com
>
>
>
>
> Johnny Fribert
> Lauridsen To: bind-users at isc.org
> <jlaurids at cisco cc:
> .com> Subject: Blinded by something
> Sent by:
> bind-users-boun
> ce at isc.org
>
>
> 07/13/00 10:32
> AM
>
>
>
>
>
>
>
>Hi,
>I am getting blind (meta-speaking), so help me understand this:
>The problem is this:
>!!! teliamobile.dk MX host mail1.teliamobile.dk is not canonical
>
>Here you get it all: Note that I am not using mydomain.com, this is the
>real thing.
>We just started this so we will soon be hiding the 10. names, but for now,
>we do not like the warning about
>the 'not canonical'. I re-created the scenario on my own system, and if I
>left out the trailing
>domain on mail1 on the CNAME statement, I did not have this warning.
>B.t.w. it does not take long for hackers to track newly created and
>registered zones. We have loads
>of tries in our logs. Why? Is it kids that have nothing else to do than
>try to infiltrate and make harm
>on businessees?
>Advise on the 'non canonical warning', pls.? And what else you might
>suggest.
>Thanks,
>/Johnny
>
>teliamobile.dk. 86400 SOA ns.teliamobile.dk.
>hostmaster.teliamobile.dk. (
> 41 ;serial (version)
> 10800 ;refresh period (3 hours)
> 3600 ;retry interval (1 hour)
> 604800 ;expire time (1 week)
> 86400 ;default ttl (1 day)
> )
>ns.teliamobile.dk. 86400 A 62.44.158.10
>ns1.teliamobile.dk. 86400 A 62.44.158.11
>ntp.teliamobile.dk. 86400 CNAME ns.teliamobile.dk.
>www.teliamobile.dk. 86400 CNAME speedy-fe1-pilot.teliamobile.dk.
>cash.teliamobile.dk. 86400 CNAME care02.teliamobile.dk.
>mail.speedytomato.dk.teliamobile.dk. 86400 CNAME
>speedy-fe1-pilot.teliamobile.dk.
>ntp1.teliamobile.dk. 86400 CNAME ns1.teliamobile.dk.
>mail1.teliamobile.dk. 86400 CNAME ns.teliamobile.dk.
>care01.teliamobile.dk. 86400 A 10.200.1.40
>care02.teliamobile.dk. 86400 A 62.44.158.40
>care03.teliamobile.dk. 86400 A 62.44.158.41
>gsw-a1.teliamobile.dk. 86400 A 62.44.159.39
>gsw-a2.teliamobile.dk. 86400 A 62.44.159.38
>spider.teliamobile.dk. 86400 A 62.44.159.61
>wap-gw.teliamobile.dk. 86400 CNAME wapgateway.teliamobile.dk.
>FK12392.teliamobile.dk. 20 A 62.44.158.235
>FK12392.teliamobile.dk. 20 TXT "01:00:50:04:e8:6c:4b"
>fk94200.teliamobile.dk. 20 A 62.44.158.231
>fk94200.teliamobile.dk. 20 TXT "01:00:06:29:92:64:bd"
>PC-4596.teliamobile.dk. 20 A 62.44.158.233
>PC-4596.teliamobile.dk. 1200 TXT "01:00:06:29:b5:e4:fd"
>PC-4844.teliamobile.dk. 20 A 62.44.158.236
>PC-4844.teliamobile.dk. 20 TXT "01:00:50:da:d9:e3:4f"
>tmnt015.teliamobile.dk. 86400 A 62.44.158.25
>dhcpserv.teliamobile.dk. 86400 CNAME ns.teliamobile.dk.
>jwi-wkst.teliamobile.dk. 86400 A 62.44.159.55
>kja-wkst.teliamobile.dk. 86400 A 62.44.159.56
>loopback.teliamobile.dk. 86400 CNAME localhost.teliamobile.dk.
>mgt-test.teliamobile.dk. 86400 A 62.44.159.62
>sherlock.teliamobile.dk. 86400 A 62.44.159.60
>dhcpserv1.teliamobile.dk. 86400 CNAME ns1.teliamobile.dk.
>gsw-core1.teliamobile.dk. 86400 A 62.44.159.36
>gsw-core2.teliamobile.dk. 86400 A 62.44.159.37
>keykeeper.teliamobile.dk. 86400 A 62.44.159.59
>localhost.teliamobile.dk. 86400 A 127.0.0.1
>PC-3021NT.teliamobile.dk. 20 TXT "01:00:60:94:1f:13:22"
>PC-3021NT.teliamobile.dk. 20 A 62.44.158.234
>wap-radius.teliamobile.dk. 86400 CNAME tmnt015.teliamobile.dk.
>wapgateway.teliamobile.dk. 86400 A 62.44.158.26
>cash-reload.teliamobile.dk. 86400 CNAME care02.teliamobile.dk.
>teliamobile.dk. 86400 MX 40 mail.teliamobile.dk.
>teliamobile.dk. 86400 MX 30 mail1.teliamobile.dk.
> !!! teliamobile.dk MX host mail1.teliamobile.dk is not canonical
>teliamobile.dk. 86400 NS ns1.teliamobile.dk.
>teliamobile.dk. 86400 NS ns.teliamobile.dk.
>wap-gateway.teliamobile.dk. 86400 CNAME wapgateway.teliamobile.dk.
>speedy-be1-pilot.teliamobile.dk. 86400 A 10.200.1.20
>speedy-fe1-pilot.teliamobile.dk. 86400 A 62.44.158.20
>rou-fwa-acc1-bvi999.teliamobile.dk. 86400 A 62.44.159.33
>teliamobile.dk. 86400 SOA ns.teliamobile.dk.
>hostmaster.teliamobile.dk. (
> 41 ;serial (version)
> 10800 ;refresh period (3 hours)
> 3600 ;retry interval (1 hour)
> 604800 ;expire time (1 week)
> 86400 ;default ttl (1 day)
> )
>
>
>Explanations on a few of the RR's (Resource Records). Those not listed can
>be found in the RFC's, but you probably don't need them if you don't know
>which are what.
>
>
> MX = Mail eXchanger - with preference. The lowest number handles the
>mail.
> A = Address (IP-number).
> AAAA = Address (IP-number, v6).
> CNAME = Canonical name - i.e. an alias.
> NS = Name Server - what servers are authoritative.
> HINFO = Host Information.
> WKS = Well Known Services.
>
>
>
>The numbers listed before each RR is the time left for that record in the
>cache. If the nameserver is authoritative on that specific record, this
>number will not
>decrease as time goes by.
>
>Zonetransfer (AXFR)
>Please note that not all ISP's allow zonetransfer and that zonetransfer of
>a domain/reverse domain only makes sence if a zone HAS been defined. You
>can
>ONLY zonetransfer a zone from one of the authoritative nameservers.
>
>
>
>
More information about the bind-users
mailing list