PTR not working...

Kevin Darcy kcd at chrysler.com
Thu Aug 13 19:38:32 UTC 2009


Alexandre Racine wrote:
> Following all you good comments, I tried different things, and can't get it to work properly yet.
>
> If my config has this:
> ---
> $ttl 38400
> 80-28.115.25.70.in-addr.arpa.	IN	SOA	ns10.bgrinformatique.com. aracine.bgrinformatique.com. (
> 			1250177152
> 			10800
> 			3600
> 			604800
> 			38400 )
> 80-28.115.25.70.in-addr.arpa.	IN	NS	ns10.bgrinformatique.com.
>   
> 82.115.25.70.in-addr.arpa.	IN	PTR	mail.bgrinformatique.com.
>   
No, that line doesn't belong in this zone. Every owner name in the 
80-28.115.25.70.in-addr.arpa zone needs to be in that part of the 
namespace. 82.115.25.70.in-addr.arpa is in a different "branch" of the 
namespace.

You should have gotten an "out of zone data" error when you tried to 
load this zone. Check your logs.

The fully-qualified owner name of the PTR record you want to resolve is: 
82.80-28.115.25.70.in-addr.arpa. That's what the CNAME points to. Add a 
PTR with that name and 82.115.25.70.in-addr.arpa should resolve through 
the alias.
> ---
>
> Doing a "dig -x 70.25.115.82" does not give mail.bgrinformatique.com but more like "No PTR records exist for 70.25.115.82.", this is from dnsstuff.com.
>
> Since I had a little more time, I tested with the same config, but instead of 80-28.115.25.70.in-addr.arpa. I have tried 80.115.25.70.in-addr.arpa.and doing a reverse DNS with dnsstuff gives "An error occurred: Server ns10.bgrinformatique.com is refusing to answer." witch seems kind of better? :)
>   
Indeed, your server is returning REFUSED to that query:


$ dig 80.115.25.70.in-addr.arpa @ns10.bgrinformatique.com.

; <<>> DiG 9.3.0 <<>> 80.115.25.70.in-addr.arpa @ns10.bgrinformatique.com.
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 1433

Which is perfectly normal, if your default is to _deny_ queries for all 
zones which you do not host. You should be serving the 
80-28.115.25.70.in-addr.arpa zone, not the 115.25.70.in-addr.arpa zone 
(since presumably you don't own the whole 70.25.115/24 netblock), or the 
25.70.in-addr.arpa zone, which is already being served by Bell Canada.

May I make a suggestion? Please stop using dnsstuff as a troubleshooting 
tool, until you have enough research/education/experience to be able to 
properly interpret its results. Otherwise it's likely to mislead you, as 
it has misled others.

You could start with the _DNS_and_BIND_ book from O'Reilly.

For this particular problem, you could also try reading RFC 2317, which 
outlines the technique Bell Canada is using here for "classless 
in-addr.arpa delegation".

                                                                         
                                          - Kevin

> -----Message d'origine-----
> De : bind-users-bounces at lists.isc.org [mailto:bind-users-bounces at lists.isc.org] De la part de Kevin Darcy
> Envoyé : 6 août 2009 16:06
> À : bind-users at lists.isc.org
> Objet : Re: PTR not working...
>
> What you have would only work if you had the whole 70.25.115.0/24 and 
> Bell Canada delegated all of 115.25.70.in-addr.arpa to you.
>
> But, it looks like you only have a /28 and Bell Canada is following some 
> sort of RFC 2317 convention:
>
> ;; ANSWER SECTION:
> 82.115.25.70.in-addr.arpa. 86400 IN CNAME 82.80-28.115.25.70.in-addr.arpa.
>
> Presumably 80-28.115.25.70.in-addr.arpa is delegated to you, as per 
> their convention. You need to populate *that* zone with PTRs if you want 
> them to resolve on the Internet.
>
> For good measure, you should probably also set yourself up to slave 
> 25.70.in-addr.arpa from Bell Canada so that you can still resolve your 
> own PTRs even if your link is down.
>
> - Kevin
>
> Alexandre Racine wrote:
>   
>> Hi all, I am trying to make my PTR work and it does not. Testing it 
>> with dnsstuff and other tools simply say that there are no records
>>
>> “*No PTR records exist for 70.25.115.82.* [Neg TTL=38400 seconds]”
>>
>> Looking up my config, I have this below. Is there something wrong?
>>
>> My other zones are working correctly.
>>
>> This is with bind 9.4.2 on Ubuntu 8.04 LTS
>>
>> Thanks for any help
>>
>> ------------
>>
>> $ttl 38400
>>
>> 115.25.70.in-addr.arpa. IN SOA ns10.bgrinformatique.com. 
>> aracine.bgrinformatique.com. (
>>
>> 1247063804
>>
>> 10800
>>
>> 3600
>>
>> 604800
>>
>> 38400 )
>>
>> 115.25.70.in-addr.arpa. IN NS ns10.bgrinformatique.com.
>>
>> 82.115.25.70.in-addr.arpa. IN PTR mail.bgrinformatique.com.
>>
>> 85.115.25.70.in-addr.arpa. IN PTR bgrinformatique.com.
>>
>> 85.115.25.70.in-addr.arpa. IN PTR www.bgrinformatique.com.
>>
>> 115.25.70.in-addr.arpa. IN NS ns11.bgrinformatique.com.
>>
>> 83.115.25.70.in-addr.arpa. IN PTR ns10.bgrinformatique.com.
>>
>> 84.115.25.70.in-addr.arpa. IN PTR ns11.bgrinformatique.com.
>>
>> ------------
>>
>> This is with bind9
>>
>> *Alexandre Racine**, VMware VSP, Vmware VTSP*
>>
>> /_aracine at bgrinformatique.com <mailto:aracine at bgrinformatique.com>_//
>>
>> /*//*
>>
>> */ /*
>>
>> /image001/
>>
>> /www.bgrinformatique.com
>> //(/*/Tel : (514)328-6211/*//
>>
>> /(//Fax : (514)325-6370///
>>
>> /8455, boul. Langelier//
>> //St-Léonard (Québec) H1P 2C5///
>>
>> *VMLOGO_VTSP_K_Q208sales_prof_B*
>>
>> /P// //Devez-vous vraiment imprimer ce courriel ?/
>>
>> / Pensons environnement... /
>>
>> ------------------------------------------------------------------------
>>
>> _______________________________________________
>> bind-users mailing list
>> bind-users at lists.isc.org
>> https://lists.isc.org/mailman/listinfo/bind-users
>>     
>
> _______________________________________________
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
> _______________________________________________
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
>
>
>   




More information about the bind-users mailing list