CIDR is killing my nerves
David Tonhofer
david.tonhofer at synapse.lu
Mon Mar 5 18:11:30 UTC 2001
Getting to it ;-)
>> In named.conf, you would have (in my case):
>>
>> // our own reverse lookup
>>
>> zone "224.217.154.194.in-addr.arpa" {
>> type master;
>> file "named.rev";
>> allow-transfer { 194.154.217.229; };
>> };
>This is it. This is what I was looking for. But how does Bind know that the
>reverse lookup zone is from 224 to 239? Why didn't you tell your bind how
>much bits your subnet has?
Your BIND doesn't need to know that. If anyone is doing a reverse lookup
on any of your IP addresses, he'll actually just be asking for a PTR
record that has as owner a domain name in the in-addr.arpa. domain. This
query will *naturally* percolate down to your nameserver. Your provider's
DNS will know to forward a query for (e.g. in my case) zone
224.217.154.194.in-addr.arpa to *your* DNS.
>> And in named.rev, you would list the PTR records
>> for the CNAMES assigned by your provider to the in-addr.arpa.
>> names corresponding to the machines on your subnetwork.
>> (which, in my case, all begin with 224.217.154.195.in-addr.arpa,
>> which as you can notice, is the base address of my CIDR
>> subnetwork), thus:
>>
>> $TTL 28800
>> $ORIGIN 217.154.194.in-addr.arpa.
>> 224 IN SOA dns1.synapse.lu.
>
>This here above is missing in my reverse lookup zone. But this I can also
>edit without my ISP doing anything.
...exactly!
>> dnsadmin.synapse.lu. (
>> 2001020410 28800 7200 604800 86400 )
>> IN NS dns1.synapse.lu.
>> IN NS dns2.synapse.lu.
>> $ORIGIN 224.217.154.194.in-addr.arpa.
>> 225 IN PTR dns1.synapse.lu.
>> 226 IN PTR wk1.synapse.lu
>> 227 IN PTR wk2.synapse.lu.
>> etc...
>
> But this is your slave dns here.
No, this baby is the master. And it's got at authorithy for
the zone "224.217.154.194.in-addr.arpa", so it can respond
to PTR queries for
225.224.217.154.194.in-addr.arpa.
226.224.217.154.194.in-addr.arpa.
227.224.217.154.194.in-addr.arpa.
etc...which are 'specially fixed (by the provider)' zone names,
of course and not zones derived from actual IP addresses.
I hope I'm explaining this correctly. I'm self-taught here.
Best regards,
-- David
More information about the bind-users
mailing list