Re: DNS zone file audit tool
Hi,
On Wed, Oct 30, 2002 at 09:34:48PM -0500, Fraser Campbell wrote:
> On October 29, 2002 08:30 am, the fabulous I. Forbes wrote:
>
> > Particularly I need something that checks that their are still
> > upstream NS records pointing to our server for each domain that we
> > host. Also I would like to check that our NS records point to valid
> > name servers (particularly with secondary nameservers) and that our
> > reverse DNS PTR records point to domains with valid A records.
> >
> > I am looking for a Debian friendly utility to help with this. I have
> > had a look at nslint but it does not seem to do what we need it to
> > do.
>
> I wrote a simple perl script that did most of the things you're looking for
> just wrapping around the nslookup command (or perhaps it was host). My
> checks (from memory) went something like this:
[SNIP]
> If you like I can try and track down my script for you. I've never checked
> for a canned solution to this problem mostly because I wanted to really
> understand and analyse every detail myself ... there might be something out
> there.
Have you also looked at djbdns' dnstrace tool? It "searches for all DNS
servers that can affect the resolution of records of type t under the
domain name fqdn, starting from the root server r. You can list more
than one root server.", and follows all possible paths.
See http://cr.yp.to/djbdns/debugging.html
Cheers,
Emile.
--
E-Advies / Emile van Bergen | emile@e-advies.info
tel. +31 (0)70 3906153 | http://www.e-advies.info
Reply to: