Configuring Reverse Dns zone file

Kevin Darcy kcd at daimlerchrysler.com
Mon Jul 19 23:25:53 UTC 2004 

Chris Ngo wrote:

>Hi all,
>
>Im trying to set my reverse dns. I have set my RDNS zone files, but
>when I dig my ip its doesnt show any of my PTR record.
>
>[root at octopusmarketing pz]# cat 193.204.161.209.in-addr.arpa 
>$TTL 86400
>
>@       IN      SOA     octopusmarketing.com.    cngo.emaylme.com. (
>                        1       ; Serial
>                        8H      ; Refresh
>                        2H      ; Retry
>                        1W      ; Expire
>                        1D)     ; Minimum TTL
>                NS      ns.octopusmarketing.com.
>
>1       IN      PTR     mail.investimmo.ca.
>2       IN      PTR     mail.adjointeplus.ca.
>
>
>
>when using the dig command, no PTR records appear:
>wasabi at acura wasabi $ dig @209.161.204.193 -x 209.161.204.193
>
>; <<>> DiG 9.2.2rc1 <<>> @209.161.204.193 -x 209.161.204.193
>;; global options:  printcmd
>;; Got answer:
>;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 13666
>;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL:
>0
>
>;; QUESTION SECTION:
>;193.204.161.209.in-addr.arpa.  IN      PTR
>
>;; AUTHORITY SECTION:
>193.204.161.209.in-addr.arpa. 86400 IN  SOA     octopusmarketing.com.
>cngo.emaylme.com. 1 28800 7200 604800 86400
>
>;; Query time: 62 msec
>;; SERVER: 209.161.204.193#53(209.161.204.193)
>;; WHEN: Sun Jul 18 15:10:05 2004
>;; MSG SIZE  rcvd: 115
>
I'm assuming the zone name is 193.204.161.209.in-addr.arpa. If that 
assumption is correct, then anything you put in the zone file will be 
relative to that name (unless overridden with an $ORIGIN directive). It 
would appear that you have in effect defined the records 
1.193.204.161.209.in-addr.arpa and 2.193.204.161.209.in-addr.arpa. Given 
that those would correspond to 5-octet reverse lookups, this is probably 
not what you wanted. More importantly, it looks like 
193.204.161.209.in-addr.arpa has not been delegated to your nameservers, 
so even if you were to define a "192.204.161.209.in-addr.arpa" PTR in 
that zone, no-one querying from the Internet would ever see it. It's not 
in the delegation chain down from the root zone, arpa, in-addr.arpa and 
so forth.

I think you and your ISP need to go back to the drawing board and figure 
out how you want/expect this delegation of control to work. The basic 
alternatives are either to delegate each address as a separate zone, or 
to go with the RFC 2317 "classless delegation" methodology of putting 
the PTRs in a "container" zone and then pointing aliases from the 
regular reverse zone to those PTRs.

                                                                         
                        - Kevin

More information about the bind-users mailing list