sortlist not working?
Treptow, Craig
Treptow.Craig at principal.com
Mon Jun 20 20:08:01 UTC 2005
Hi. We're running BIND 9.2.3 on Solaris. I'm trying to get some
sortlist statements working, and I suspect I'm being stupid, so I'd
appreciate confirmation of that if that is the case. ;) My testing in
our lab indicated that it would work, but of course in the real world it
isn't working yet.
My tester has an IP address of 172.25.117.15, which should match the
"usa-gri1" ACL, and end up with the "172.25.228.37" first in the result
set, but instead, they receive all of the 162.131.*.* responses first.
When I check the "172.25.228.37" is in the response. Am I
misunderstanding something?
Thanks for any help! =20
Here are some details.
I have a sort list in my global options like this:
sortlist {
{ usa-dsm1; { 162.131.0.0/16; }; };
{ usa-gri1; { 172.25.228.37; 162.131.0.0/16; }; };
{ usa-lax1; { 172.26.28.37; 162.131.0.0/16; }; };
{ usa-mdt1; { 172.25.180.57; 162.131.0.0/16; }; };
{ usa-spk1; { 172.25.82.14; 162.131.0.0/16; }; };
{ chi-hkg1; { 172.17.36.190; 162.131.0.0/16; }; };
{ eng-lon1; { 172.25.125.15; 162.131.0.0/16; }; };
{ mex-mex1; { 172.17.33.29; 162.131.0.0/16; }; };
{ mex-mty1; { 192.168.237.252; 162.131.0.0/16; }; };
{ chl-scl1; { 192.168.76.219; 162.131.0.0/16; }; };
{ aus-syd1; { 172.25.123.10; 162.131.0.0/16; }; };
};
The associated ACL statements look like:
// Begin - ACLs for AD sortlist ordering
acl aus-syd1 {
{ 172.25.123.0/24; };
};
acl chi-hkg1 {
{ 172.17.36.0/24;
172.17.37.0/24; };
};
acl chl-scl1 {
{ 172.17.40.0/24;
172.17.41.0/24;
172.17.42.0/24;
172.17.43.0/24;
172.17.44.0/24;
172.17.45.0/24;
172.17.46.0/24;
172.17.47.0/24;
172.17.48.0/24; };
};
acl eng-lon1 {
{ 172.25.125.0/24; };
};
acl mex-mex1 {
{ 172.17.33.0/25;
172.17.33.128/25;
172.17.56.0/25; };
};
acl mex-mty1 {
{ 192.168.236.0/23;
192.168.237.0/24; };
};
acl usa-dsm1 {
{ 162.131.0.0/16;
172.25.0.0/16;
172.25.182.0/24;
172.25.183.0/24;
172.25.184.0/24;
172.25.185.0/24;
172.25.186.0/24;
172.25.187.0/24;
172.25.214.0/24;
172.26.0.0/16; };
};
acl usa-gri1 {
{ 172.25.117.0/24;
172.25.118.0/24;
172.25.119.0/24;
172.25.120.0/24;
172.25.121.0/24;
172.25.122.0/24;
172.25.216.0/24;
172.25.228.0/24; };
};
acl usa-lax1 {
{ 172.26.29.128/25; };
};
acl usa-mdt1 {
{ 172.25.180.0/23;
172.25.180.0/24; };
};
acl usa-spk1 {
{ 172.25.82.0/24;
172.25.83.0/24; };
};
acl usa-wtl1 {
{ 172.25.163.0/24;
172.25.164.0/24;
172.25.166.0/24;
172.25.167.0/24; };
};
// End - ACLs for AD sortlist ordering
Craig Treptow
IT Network Analyst - Senior
IS Network Administration - Network Management
515-247-6207
-----Message Disclaimer-----
This e-mail message is intended only for the use of the individual or
entity to which it is addressed, and may contain information that is
privileged, confidential and exempt from disclosure under applicable law.
If you are not the intended recipient, any dissemination, distribution or
copying of this communication is strictly prohibited. If you have
received this communication in error, please notify us immediately by
reply email to Connect at principal.com and delete or destroy all copies of
the original message and attachments thereto. Email sent to or from the
Principal Financial Group or any of its member companies may be retained
as required by law or regulation.
Nothing in this message is intended to constitute an Electronic signature
for purposes of the Uniform Electronic Transactions Act (UETA) or the
Electronic Signatures in Global and National Commerce Act ("E-Sign")
unless a specific statement to the contrary is included in this message.
More information about the bind-users
mailing list