Bind 4.9.7REL Reverse resolution problem
Kevin Darcy
kcd at daimlerchrysler.com
Wed Nov 22 00:10:48 UTC 2000
Kevin D. Quitt wrote:
> NT 4, SP6a, BIND-DNS 4.9.7REL
>
> ns1.quitt.net was the primary for my domains (quitt.net, swhs.org,
> castleinfinity.com) and ns2.quitt.net was secondary. Everything was
> working. ns1.quitt.net went down, so I reinstalled BIND-DNS on ns2
> as a primary server, and copied the relevant information from ns1 to
> ns2. ns1 became the secondary when it came back up.
>
> Everything works properly, except reverse lookup. I either get the
> message "server failed" or a timeout. I had more than one PTR record
> in my zone files, but was informed that's a no-no, so I removed them.
> Made no difference. On startup, I get no error messages.
>
> I am getting the following messages:
>
> dangling CNAME pointer (43.40.174.197.63.in-addr.arpa)
>
> 43.40.174.197.63 ? This shows up once in a blue moon.
>
> Lame server on '11.37.209.209.in-addr.arpa' (in
> '37.209.209.IN-ADDR.ARPA'?): [209.142.0.218].53
> 'DOGBERT.INREACH.COM': learnt (A=198.17.208.67,NS=192.112.36.4)
>
> Lame server on '11.37.209.209.in-addr.arpa' (in
> '37.209.209.IN-ADDR.ARPA'?): [209.142.0.2].53 'NS.INREACH.NET':
> learnt (A=198.17.208.67,NS=192.112.36.4)
>
> Isn't this their problem and not mine? Do I need to tell them?
Both of the delegated nameservers -- ns.inreach.net and dogbert.inreach.com --
are lame for 37.209.209.in-addr.arpa. Yes, you should tell them.
> ns_forw: query(www.gaskill.net) contains our address
> (NS2.QUITT.NET:63.197.174.42) learnt (A=quitt.net:NS=208.206.240.5)
>
> ns_resp: query(www.gaskill.net) contains our address
> (NS2.QUITT.NET:63.197.174.42) learnt (A=quitt.net:NS=208.206.240.5)
>
> ??
ns2.quitt.net is a delegated nameserver for gaskill.net, but you don't have it
anywhere in your configuration. Either you should define it as a slave zone, or
get your nameserver removed from the delegations. If someone has delegated to
your nameserver without your permission and refuses to change it, and you don't
want to be a slave, then you might consider setting up a master gaskill.net
zone pointing to a porno site, hate-group site, parody site, or whatever, until
they learn the error of their ways. I don't *think* you could be held liable
for that (they're the ones claiming that your nameserver is authoritative,
after all)...
- Kevin
More information about the bind-users
mailing list