reverse address resolution problems

David Botham dns at botham.net
Thu Aug 8 21:13:58 UTC 2002 



> -----Original Message-----
> From: bind-users-bounce at isc.org [mailto:bind-users-bounce at isc.org] On
> Behalf Of Aidan Mark Humphreys
> Sent: Thursday, August 08, 2002 2:34 PM
> To: comp-protocols-dns-bind at isc.org
> Subject: RE: reverse address resolution problems
> 
> 
> David Botham wrote:
> 
> > Your problem with short resolution could be here.  Your
> > attempts to hide
> > the real domain could have erased the answer to your question.
> 
> Thanks for the reply David.
> 
> >  Try posting the real info...
> 
> OK - s/xzy/agenturbell/g
> 
> Does that really affect things?

Not yet... sorry... more below...

> 
> The official domain, is registered to me, and one address mapped
> to a web hosting account.
> 
> However I want to use the name as the domain of my LAN.
> 
> I am simply intending that the local DNS sever resolving
> _internal_ host names - hosts on the LAN. No query for a vaild
> host at agenturbell.de net would pass beyond the firewall. Nor
> would the internal name concern any outside host.
> 
> > The command you show is looking for an A record for
> > 192.168.123.187,
> > which we know does not exist.  The -x option tells dig to
> > formulate an
> > in-addr.arpa query based on the ip address given on the cli.
> > The default query type for dig is "A"...
> 
> Here is the result executing your recommended query...
> 
> -------------------------------------------------------
> 
> dig -x @192.168.123.187 192.168.123.187

My bust, try this:

dig -x 192.168.123.187 @192.168.123.187

> 
> ; <<>> DiG 8.3 <<>> -x 192.168.123.187
> ;; res options: init recurs defnam dnsrch
> ;; got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2
> ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1,
> ADDITIONAL: 1
> ;; QUERY SECTION:
> ;;      192.168.123.187, type = ANY, class = IN
> 
> ;; AUTHORITY SECTION:
> ..                       1D IN SOA       A.ROOT-SERVERS.NET.
> NSTLD.VERISIGN-GRS.COM. (
>                                         2002080800      ; serial
>                                         30M             ;
> refresh
>                                         15M             ; retry
>                                         1W              ; expiry
>                                         1D )            ;
> minimum
> 
> 
> ;; ADDITIONAL SECTION:
> ; EDNS: version: 0, udp=4096, flags=0000
> 
> ;; Total query time: 708 msec
> ;; FROM: bornheim.agenturbell.de to SERVER: default --
> 192.168.123.187
> ;; WHEN: Thu Aug  8 20:18:05 2002
> ;; MSG SIZE  sent: 33  rcvd: 119
> -------------------------------------------------------------
> 
> It did not see the local DNS sever as authorative for the local
> 123.168.192.in-addr.arpa. domain and forwared the query to the
> root servers. Why? Surely there must be something wrong in my
> zone file, but I can't see it. How to debug?

> 
> A.

More information about the bind-users mailing list