Can someone please explain?

Tim Maestas tmaestas at dnsconsultants.com
Fri Aug 9 05:56:44 UTC 2002 

This is tcpd (or tcp wrappers) logging this message, not BIND.

-Tim




On Thu, 8 Aug 2002, Bind-Users Mailist wrote:

> > From bind-users-bounce at isc.org Thu Aug  8 10:30:17 2002
> > From: "David Botham" <dns at botham.net>
> > To: <bind-users at isc.org>
> > Subject: RE: Can someone please explain?
> > Date: Thu, 8 Aug 2002 13:19:17 -0400
> >
> >
> >
> >
> > > -----Original Message-----
> > > From: bind-users-bounce at isc.org [mailto:bind-users-bounce at isc.org] On
> > > Behalf Of Bind-Users Mailist
> > > Sent: Thursday, August 08, 2002 1:14 PM
> > > To: bind-users at isc.org
> > > Subject: Can someone please explain?
> > > 
> > > Following log entry:
> > > /etc.hosts.allow. line 23: host name/address mismatch: 209.61.188.115
> > > !=china-stone.net
> > > The above warning dated Aug 7 07:46:09
> > > Line 23 reads
> > > ALL : ALL : allow
> >
> > The PTR and A RR do not match:
> >
> > [root at nsca1 root]# dig -x 209.61.188.115
> >
> > ; <<>> DiG 8.3 <<>> -x 
> > ;; res options: init recurs defnam dnsrch
> > ;; got answer:
> > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
> > ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
> > ;; QUERY SECTION:
> > ;;      115.188.61.209.in-addr.arpa, type = ANY, class = IN
> >
> > ;; ANSWER SECTION:
> > 115.188.61.209.in-addr.arpa.  1D IN PTR  china-stone.net.
> >
> > ;; AUTHORITY SECTION:
> > 188.61.209.in-addr.arpa.  1D IN NS  ns.rackspace.com.
> > 188.61.209.in-addr.arpa.  1D IN NS  ns2.rackspace.com.
> >
> > ;; ADDITIONAL SECTION:
> > ns.rackspace.com.       1D IN A         207.235.16.2
> > ns2.rackspace.com.      1D IN A         207.71.44.121
> >
> > ;; Total query time: 34 msec
> > ;; FROM: nsca1 to SERVER: default -- 216.154.198.178
> > ;; WHEN: Fri Dec 27 19:23:29 2002
> > ;; MSG SIZE  sent: 45  rcvd: 154
> >
> > [root at nsca1 root]# dig china-stone.net
> >
> > ; <<>> DiG 8.3 <<>> china-stone.net 
> > ;; res options: init recurs defnam dnsrch
> > ;; got answer:
> > ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
> > ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 0
> > ;; QUERY SECTION:
> > ;;      china-stone.net, type = A, class = IN
> >
> > ;; ANSWER SECTION:
> > china-stone.net.        1H IN A         62.190.185.65
> >
> > ;; AUTHORITY SECTION:
> > china-stone.net.        1H IN NS        dns9.register.com.
> > china-stone.net.        1H IN NS        dns10.register.com.
> >
> > ;; Total query time: 5023 msec
> > ;; FROM: nsca1 to SERVER: default -- 216.154.198.178
> > ;; WHEN: Fri Dec 27 19:23:54 2002
> > ;; MSG SIZE  sent: 33  rcvd: 100
> >
> >
> > > 
> > > So far I have not got paranoid anout hosts.allow probably because
> > others
> > > things have taken a higher priority :-)
> > > 
> > > Advice please
> > > 
> > > David
> > > Systems Administrator
> > > Vizion2000.net
> >
> >
> >
> But why this warning on my DNS which does not serve theoted domain?
> David
>

More information about the bind-users mailing list