Help with reverse addressing

phn at icke-reklam.ipsec.nu phn at icke-reklam.ipsec.nu
Thu Apr 11 16:43:57 UTC 2002 

Michael D. Kirkpatrick <wizard at psychodad.com> wrote:

> I am not sure if I set up my reverse lookups correctly or not.  I do
> not know how to test all aspects to verify that I did it correctly. 
> The only tool I know of is 'nslookup ip.ad.dd.ress'

> I have forward and reverse set for the following address:
> 12.45.204.6  =  web1.ca-industries.com

> When I do an nslookup on either one, it looks ok to me.  The only
> problem is that now I am getting bounced messages from mail servers
> with weird errors like DNS failure, Invalid sender, etc...  I just
> started deligating my own reverse lookup addresses and the bounce
> E-Mail started flowing in.  Can anyone please look at my records and
> tell me if something is wrong?

Your nameservers works. BUT :

1/ you have filters that strips TCP/53 , this might or might not
create connectivity problems

2/ all of your nameservers are located on the same subnet in the end of
the same link. This is definitly a problem. Try to find a slave 
somewheer else and add to your delegation records.maybe your ISP could
do this ?


> I am using bind 9.2.0.

> In my named.conf, I have the following (Note, the netmask is /26):
> #########
> zone "0/26.204.45.12.IN-ADDR.ARPA" {
>         type master;
>         file "12.45.204";
>         notify yes;
> };
> #########

> In 12.45.204:
> #########
> $TTL    86400
> @               IN      SOA     ns1.ca-industries.com. 
> webmaster.ca-industries.com. (
>                         2002040903 ; serial
>                         10800 ; refresh
>                         3600 ; retry
>                         604800 ; expire
>                         86400 ; default_ttl
>                         )
> @               IN      NS      ns1.ca-industries.com.
> @               IN      NS      ns2.ca-industries.com.
> 0               IN      PTR     network.ca-industries.com.
> 1               IN      PTR     gateway.ca-industries.com.
> 2               IN      PTR     ns1.ca-industries.com.
> 3               IN      PTR     ns2.ca-industries.com.
> 4               IN      PTR     empty4.ca-industries.com.
> 5               IN      PTR     empty5.ca-industries.com.
> 6               IN      PTR     web1.ca-industries.com.
> ...
> 63               IN      PTR     broadcast.ca-industries.com.
> ##########


> Is there anything I am overlooking?  Did I forget something? 
> Something set up wrong?
> Any help would be greatly appreciated.  Thanks in advance.


-- 
Peter Håkanson         
        IPSec  Sverige      (At the Riverside of Gothenburg, home of Volvo)
           Sorry about my e-mail address, but i'm trying to keep spam out.
	   Remove "icke-reklam" and it works.

More information about the bind-users mailing list