A record in reverse lookup zone?
Barry Margolin
barmar at genuity.net
Fri Jan 11 19:40:01 UTC 2002
In article <a1n2q4$4sa at pub3.rc.vix.com>, Kent Tong <kent at cpttm.org.mo> wrote:
>
>Suppose I have a reverse lookup zone for 3.175.202.in-addr.arpa.:
>
>3.175.202.in-addr.arpa. SOA c002.foo.com. kent.foo.com. (
> 1
> 900
> 600
> 86400
> 3600)
>3.175.202.in-addr.arpa. NS c002.foo.com.
>1 PTR c001.foo.com.
>2 PTR c002.foo.com.
>
>In BIND, is it required or allowed to add the following A
>records:
>
>c002.foo.com. A 202.175.3.2
>
>AFAIK this is certainly not required and I suspect this is
>not allowed at all.
It's not allowed. BIND will complain that the record is outside the zone
and will ignore it.
> I am asking this because the DNS server
>in Win2K forces the admin to input the IP of each server
>specified by NS and creates the A record for it automatically.
>This makes me think twice whether I am understanding DNS
>correctly.
It uses that address to implement its zone transfer access list, so that it
doesn't have to do its own lookup to resolve the server names. BIND
doesn't create a zone transfer ACL automatically, so it's not an issue
there.
--
Barry Margolin, barmar at genuity.net
Genuity, Woburn, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.
More information about the bind-users
mailing list