How to verify Concentric.net has delegated reverse lookups to my NS?

Barry Margolin barmar at bbnplanet.com
Fri Nov 12 18:31:31 UTC 1999


In article <80ggfg$90 at chronicle.concentric.net>,
David Cunningham <newsonly at please.com> wrote:
>The idea is for my nameserver to answer reverse lookup queries for hosts in
>my domain.  My nameserver (ns1.radiusweb.com) will already answer correctly
>when using nslookup to resolve 209.220.157.211 (for example.)  At this time
>the only way to get this reverse lookup to resolve properly is to directly
>query my nameserver.  Somewhere the recursion process fails (I'm assuming at
>Concentric.)

I know what the idea is.  Concentric is apparently using the technique in
RFC 2317, but they've only done one of the two steps.

>Is it sufficient then for concentric to do something like this?
>
>"157.220.209.in-addr.arpa"
>
>208.157.220.209.in-addr.arpa.    IN    NS    ns1.radiusweb.com.
>209.157.220.209.in-addr.arpa.    IN    NS    ns1.radiusweb.com.
>210.157.220.209.in-addr.arpa.    IN    NS    ns1.radiusweb.com.
>211.157.220.209.in-addr.arpa.    IN    NS    ns1.radiusweb.com.
>212.157.220.209.in-addr.arpa.    IN    NS    ns1.radiusweb.com.
>    .  .  .  .  .  .  .  .
>223.157.220.209.in-addr.arpa.    IN    NS    ns1.radiusweb.com.

They could do this, but then you would have to create a separate zone for
each IP:

zone "208.157.220.209.in-addr.arpa" {
  type master;
  filename "rev.209.220.157.208";
};
zone "209.157.220.209.in-addr.arpa" {
  type master;
  filename "rev.209.220.157.209";
};
zone "210.157.220.209.in-addr.arpa" {
  type master;
  filename "rev.209.220.157.210";
};
....

and they would have to do similarly on their secondary servers.

The right thing to do is for you to create the
208/28.157.220.209.in-addr.arpa zone, fill it with your PTR records, and
for them to put in all the CNAME records in the parent zone, just like RFC
2317 says.

-- 
Barry Margolin, barmar at bbnplanet.com
GTE Internetworking, Powered by BBN, Burlington, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.


More information about the bind-users mailing list