Doubt about RFC1918 response from Internet

Carlos Ribas carlos at ansp.br
Thu Apr 5 11:57:40 UTC 2012 

Hello,

    I'm sending this message to see if I understood the meaning of " RFC
1918 response from Internet" message logs. I read the FAQ of Bind [1], but
I have to be honest to say that I'm a litlle bit confused, since English is
not my first language.

    I'm using Bind 9.7.3 in a Debian server. It has a arquive named
zones.rfc1918 [2] that is enabled. I just took off the line refering to
10.0.0.0 network because I'm using it in my organization. I have the
reverse configured for my network, eg: 1.0.10.in-addr.arpa, but I dont have
the reverse for the rest of this network.

    If, by mistake or not, a client asks for a address in the 10.0.2.0
network, my server will querying the Internet's name servers for this
address once I dont have it configured and then I will receive message logs
about it [3]. Is that correct?

[1] - http://www.bind9.net/BIND-FAQ

[2] - zones.rfc1918 arquive:
zone "16.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "17.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "18.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "19.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "20.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "21.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "22.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "23.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "24.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "25.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "26.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "27.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "28.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "29.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "30.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };
zone "31.172.in-addr.arpa"  { type master; file "/etc/bind/db.empty"; };

zone "168.192.in-addr.arpa" { type master; file "/etc/bind/db.empty"; };

[3] Message logs:
04-Apr-2012 18:15:25.099 security: client 10.0.1.13#47738: view internal:
RFC 1918 response from Internet for 50.2.0.10.in-addr.arpa
04-Apr-2012 18:21:09.245 security: client 10.0.1.13#42000: view internal:
RFC 1918 response from Internet for 50.2.0.10.in-addr.arpa


Best regards,

---------------------------------
Carlos Eduardo Ribas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20120405/c69557c1/attachment.html>

More information about the bind-users mailing list