Blocking reverse lookup queries for private ips
Juan Bernhard
juan at inti.gob.ar
Thu Nov 24 20:37:44 UTC 2016
El 22/11/2016 a las 07:40 a.m., Sachin Patil escribió:
> Hello All,
>
> I want to forward reverse dns lookup queries for private ips to
> forwarders on my bind server.
>
>
> I have searched on internet and found I can have mapping to my private
> ips in ptr db records but I don't want this.
>
> I want to return nxdomain for any private ip reverse lookup.
>
>
> Can I do this using configurations?
>
> Please guide.
>
>
> Sachin
I think that you need a split dns. You will have a public dns database
and a private one (all in the same bind, you dont need 2 diferent
servers or instances of bind, check "view" in the manual). You can also
give a unique name for server who has privates IP, but a mapped public
IP. The "inner" dns will respond with the private ip, and the public one
with the mapped ip address/.
/Its a bit more complicated, but is the best way to approach this problem.
Hope this helps.
Saludos, Juan.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20161124/924ce77e/attachment.html>
More information about the bind-users
mailing list