Blocking reverse lookup queries for private ips
Sachin Patil
04sachin at gmail.com
Fri Nov 25 07:12:54 UTC 2016
This is typo - 'I want to forward reverse dns lookup queries for private
ips to forwarders on my bind server.'
Correct one is - I don't want to forward reverse dns lookup queries for
private ips to forwarders.
On Fri, Nov 25, 2016 at 2:07 AM, Juan Bernhard <juan at inti.gob.ar> wrote:
>
> El 22/11/2016 a las 07:40 a.m., Sachin Patil escribió:
>
> Hello All,
>
> I want to forward reverse dns lookup queries for private ips to forwarders
> on my bind server.
>
>
> I have searched on internet and found I can have mapping to my private ips
> in ptr db records but I don't want this.
>
> I want to return nxdomain for any private ip reverse lookup.
>
>
> Can I do this using configurations?
>
> Please guide.
>
>
> Sachin
>
>
> I think that you need a split dns. You will have a public dns database and
> a private one (all in the same bind, you dont need 2 diferent servers or
> instances of bind, check "view" in the manual). You can also give a unique
> name for server who has privates IP, but a mapped public IP. The "inner"
> dns will respond with the private ip, and the public one with the mapped ip
> address
> *. *Its a bit more complicated, but is the best way to approach this
> problem.
>
> Hope this helps.
>
> Saludos, Juan.
>
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20161125/678bd77d/attachment.html>
More information about the bind-users
mailing list