Reverse DNS Delegation Issues

Tue Sep 27 00:02:36 UTC 2005

> I am stuck.  I am trying to setup reverse DNS on my server.  I had my
> ISP setup delegation of my network to my 2 NS's but it is still not
> working.  What am I missing?  Please help!!!
> 
> I have followed a lot of HowTo's online and still I cannot make this work.
> When I try reverse DNS lookups from such sites as www.dnsstuff.com and
> others, it fails.
> 
> When I try "dig -x" locally, it is failing too.
> Grrr!!!
> 
> -=-=-=-=- Here is what my ISP's zone file looks like for me -=-=-=-=-=-
> ; definition of our target 66.113.90.32 subnet ; name servers for
> subnet reverse map
> 32/28 IN NS ns1.digitalrefuge.com.
> 32/28 IN NS ns2.digitalrefuge.com.

	Ok 32/28.90.113.66.IN-ADDR.ARPA. is delegated to you ...

> ; 32 network
> 33 IN CNAME 33.32/28.90.113.66.in-addr.arpa. ; qualified
> 34 IN CNAME 34.32/28
> 35 IN CNAME 35.32/28
> 36 IN CNAME 36.32/28
> 37 IN CNAME 37.32/28
> 38 IN CNAME 38.32/28
> 39 IN CNAME 39.32/28
> 40 IN CNAME 40.32/28
> 41 IN CNAME 41.32/28
> 42 IN CNAME 42.32/28
> 43 IN CNAME 43.32/28
> 44 IN CNAME 44.32/28
> 45 IN CNAME 45.32/28
> 46 IN CNAME 46.32/28
> ; 47 broadcast
> 
> -=-=-=-=-=- Here is what my named.conf looks like for this zone -=-=-=-=-
> zone "33.32/28.90.113.66.in-addr.arpa" {
>         type master;
>         file "reverse/66.113.90.rev";

	Choose a different file name for this zone.
	e.g.
		"reverse/66.113.90.32.rev"

> };

	... but you have created a zone called 33.32/28.90.113.66.IN-ADDR.ARPA.
	Remove the "33." to make it "32/28.90.113.66.IN-ADDR.ARPA".

	Configure yourself as a stealth slave for 90.113.66.IN-ADDR.ARPA.
	You will want this for local reverse lookups to work when your
	external link is down.

	zone "90.113.66.IN-ADDR.ARPA" {
		type slave;
		masters { 66.113.95.21; 66.113.95.22; };
		file "reverse/66.113.90.rev"; (or "cache/66.113.90.rev")
		notify no;
	};

> zone "digitalrefuge.com" {
>         type master;
>         file "pz/digitalrefuge.com";
> };
> 
> -=-=-=-=- Here is what my ../reverse/66.113.90.rev file looks like -=-=-=-=-
> 
> 
> $TTL 8H

	Remove this line.  It is not needed.

> $ORIGIN 33.32/28.90.113.66.IN-ADDR.ARPA.
	
		
> @               IN      SOA     ns1.digitalrefuge.com.  hostmaster.digitalrefuge.com. (
>                         2005092603      ; serial, todays date + todays serial
>  #
>                         8H              ; refresh, seconds
>                         15M             ; retry, seconds
>                         2W              ; expire, seconds
>                         3H              ; minimum, seconds
>                         )
> 
> @              IN      NS      ns1.digitalrefuge.com.
> @              IN      NS      ns2.digitalrefuge.com.
> 
> 34              IN      PTR     66-113-90-34.digitalrefuge.com.
> 35              IN      PTR     66-113-90-35.digitalrefuge.com.
> 36              IN      PTR     66-113-90-36.digitalrefuge.com.
> 37              IN      PTR     66-113-90-37.digitalrefuge.com.
> 38              IN      PTR     66-113-90-38.digitalrefuge.com.
> 39              IN      PTR     66-113-90-39.digitalrefuge.com.
> 40              IN      PTR     66-113-90-40.digitalrefuge.com.
> 41              IN      PTR     66-113-90-41.digitalrefuge.com.
> 42              IN      PTR     66-113-90-42.digitalrefuge.com.
> 43              IN      PTR     66-113-90-43.digitalrefuge.com.
> 44              IN      PTR     66-113-90-44.digitalrefuge.com.
> 45              IN      PTR     66-113-90-45.digitalrefuge.com.
> 46              IN      PTR     66-113-90-46.digitalrefuge.com.
> 
> 
> -=-=-=-=- Here is what my ../pz/digitalrefuge.com zone looks like -=-=-=-=-
> 
> $TTL 8H
> @       IN      SOA     ns.digitalrefuge.com. hostmaster.digitalrefuge.com. (
>                         2005092103      ; serial, todays date + todays serial
>  #
>                         8H              ; refresh, seconds
>                         2H              ; retry, seconds
>                         4W              ; expire, seconds
>                         1D )            ; minimum, seconds
> 
> @              NS      ns1.digitalrefuge.com.
> @              NS      ns2.digitalrefuge.com.
> 
>                 MX      10 mail         ; Primary Mail Exchanger
> 
>                 A       66.113.90.41
> localhost       A       127.0.0.1
> 66-113-90-34    A       66.113.90.34
> 66-113-90-35    A       66.113.90.35
> 66-113-90-36    A       66.113.90.36
> 66-113-90-37    A       66.113.90.37
> 66-113-90-38    A       66.113.90.38
> 66-113-90-39    A       66.113.90.39
> 66-113-90-40    A       66.113.90.40
> 66-113-90-41    A       66.113.90.41
> 66-113-90-42    A       66.113.90.42
> 66-113-90-43    A       66.113.90.43
> 66-113-90-44    A       66.113.90.44
> 66-113-90-45    A       66.113.90.45
> 66-113-90-46    A       66.113.90.46
> ns              A       66.113.90.35
> ns1             A       66.113.90.35
> ns2             A       66.113.90.36
> www             A       66.113.90.41

> 
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org