odd behaviour on caching ns with views

Torsten toto at the-damian.de
Mon Jun 14 06:05:01 UTC 2010 

Am Sun, 13 Jun 2010 14:45:22 -0700
schrieb JINMEI Tatuya / 神明達哉 <jinmei at isc.org>:

> At Tue, 8 Jun 2010 11:03:55 +0200,
> Torsten <toto at the-damian.de> wrote:
> 
> > Everything works perfectly okay except queries for
> > 1.0.0.127.in-addr.arpa and 0.0.0.0.in-addr.arpa. These are refused
> > by the caching server (denied entries in default log).
> > Asking those queries on an identical server without views returns
> > the usual NXDOMAIN answer.
> > 
> > Is there something special about 0.in-addr.arpa and
> > 127.in-addr.arpa in views I haven't seen yet?
> 
> That sounds like something related to builtin "empty zones".  But I
> have no idea how the existence/non-existence of views affects the
> behavior.  That may be due to your separate configuration file:
> 
> 	include "/named/default/private_netblocks.conf";
> 
> and showing the content of this file may help.
> 

Oh... sorry, that file should have been in the original post.
It contains forwardings for RFC1918 net blocks to our own blackhole
instances, since we had some problems with the generally available
servers located in Amsterdam in the past.

zone "10.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "16.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "17.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "18.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "19.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "20.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "21.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "22.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "23.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "24.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "25.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "26.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "27.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "28.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "29.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "30.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "31.172.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};

zone "168.192.in-addr.arpa" {
        type forward;
        forwarders { 195.180.210.154; 195.180.210.130; };
};



Ciao
Torsten

More information about the bind-users mailing list