reverse delegation problem
barmar at bbnplanet.com
Wed Mar 22 16:49:49 UTC 2000
In article <Pine.LNX.4.10.10003211859380.13780-100000 at server1.securityinsight.com>,
Email Archive <archive at securityinsight.com> wrote:
>I think I have done everything right.. at least accoridng to the dns&bind
>book ver 3.
Looks right to me, too.
>When I go to the proxy and try to do a nslookup on 220.127.116.11
>or any other ip listed above it seems to work fine.
>When I try from medns1&2 for the same ip address it fails with this
>root at medns1 # nslookup 18.104.22.168
>*** Can't find server name for address 22.214.171.124: Server failed
>I end up just timing out on everwhere else on the net that I tried it.
As far as I can tell, there's no problem. It works fine for me using our
caching DNS servers, and also when I point to your servers:
% dig -x 126.96.36.199 ptr @medns2.messagereach.com
; <<>> DiG 8.1 <<>> -x ptr @medns2.messagereach.com
; (1 server found)
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2
;; QUERY SECTION:
;; 188.8.131.52.in-addr.arpa, type = PTR, class = IN
;; ANSWER SECTION:
184.108.40.206.in-addr.arpa. 1H IN CNAME 237.224-254.255.183.205.in-addr.arpa.
237.224-254.255.183.205.in-addr.arpa. 1H IN PTR pull2.messagereach.com.
>One other minor issue I am having is that on the medns1 and 2 boxes
>I keep getting this error message in the logs when bind is restarted.
>What should I do to resolve this?
>Mar 21 18:38:54 medns1 named: check_hints: no A records for
>L.ROOT-SERVERS.NET class 1 in hints
Your root hints file should include the following two lines:
.. 3600000 NS L.ROOT-SERVERS.NET.
L.ROOT-SERVERS.NET. 3600000 A 220.127.116.11
The log message suggests that the second line is missing.
Barry Margolin, barmar at bbnplanet.com
GTE Internetworking, Powered by BBN, Burlington, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.
More information about the bind-users