Rev DNS delegation query
Kevin Darcy
kcd at daimlerchrysler.com
Wed Aug 29 00:57:46 UTC 2001
This is a reckless thing to do. RFC-conformant or not, there are some nameservers out
there (yes, maybe some old BIND versions) that will get poisoned by the bogus Authority
information that gets propagated with this scheme.
Remember "be conservative in what you send".
- Kevin
Jonathan de Boyne Pollard wrote:
> AB> My ISP has delegated to me the reverse delegation of my block
> AB> 217.169.3.144-217.169.3.151.
> AB>
> AB> Does this mean that I have to set up *eight* individual zonefiles
> AB> ie:
> AB> 144.3.169.217.in-addr.arpa,
> AB> 145.3.169.217.in-addr.arpa,
> AB> etc etc ??
>
> No. Even if your ISP is delegating each name separately, you only need *one*
> zone file on your DNS server. It is a common misconception that delegations
> must point to zone apices. They need not. You can find an explanation of how
> to handle what your ISP is, quite sensibly, doing, with links to two worked
> examples showing the two basic variations on the theme, at
> <URL:http://homepages.tesco.net./~J.deBoynePollard/FGA/avoid-rfc-2317-delegation.html>.
More information about the bind-users
mailing list