Getting deligated reverse done correctly
Kevin Darcy
kcd at daimlerchrysler.com
Fri Jun 30 21:17:02 UTC 2000
Jymm wrote:
> Please excuse any ignorance here, looking for clarification of RFC2317
>
> Running: bind-8.2.2p4 under Caldera 2.3
You're only 1 patch level away from the latest & greatest.
> My ISP assigned me a /27 subnet - (we'll say...) 300.0.0.128-159
> They will give me authority for the reverses, but when I read ORA's BIND
> (3rd ed) or RFC2317, I'm a bit confused as to what goes where.
>
> In my isp's 300.0.0.rev file they have:
>
> 129.0.0.300.in-addr.arpa. IN CNAME 300-0-0-129.mydomain.com.
> 130.0.0.300.in-addr.arpa. IN CNAME 300-0-0-130.mydomain.com.
> 131.0.0.300.in-addr.arpa. IN CNAME 300-0-0-131.mydomain.com.
>
> In my mydomain.com.hosts file I have:
>
> www.mydomain.com. IN A 300.0.0.129
> 300-0-0-129.mydomain.com. IN PTR www.mydomain.com
>
> mail.mydomain.com IN A 300.0.0.130
> 300-0-0-130.mydomain.com. IN PTR mail.mydomain.com
>
> ftp.mydomain.com IN A 300.0.0.131
> 300-0-0-131.mydomain.com. In PTR ftp.mydomain.com
This is a smart way to do things, but it's a little different from
RFC 2317, so I can't blame you for being confused. They are aliasing
directly into your mydomain.com zone.
> Ok, the forwards are fine, but I need to create a reverse file:
>
> 129.0.0.300.in-addr.arpa. IN PTR www.mydomain.com.
> 130.0.0.300.in-addr.arpa. IN PTR mail.mydomain.com.
> 131.0.0.300.in-addr.arpa. IN PTR ftp.mydomain.com.
Um, no. You already have the PTR's where they need to be. You don't need a
"reverse file". This is why I characterize the method as "smart"; because,
unlike classic RFC 2317, it doesn't require the creation of a new zone. You
just add the PTR's to an existing zonefile, and voila! you're done. I like
it.
These reverse records are actually working, n'est-ce pas? I'd check myself,
except you obfuscated the data...
> The part I'm confused with is what do I name this file:
> 300.0.0.rev ???
>
> Where does the part about 129.128-159.0.0.300.in-addr.arpa.
> come into play here as mentioned in RFC2317?
> What file is this refering to FWD or REV?
Stop thinking in terms of forward and reverse *files* or *zones*. PTRs are
reverse *entries*. As long as the CNAMEs are in the proper places, then
whether or not the PTRs are contained in a zone under in-addr.arpa is
merely a matter of convenience. With the co-operation of your provider,
they can be contained in *any* zone(s) under your control.
- Kevin
More information about the bind-users
mailing list