[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: DNS zone file audit tool


On Wed, Oct 30, 2002 at 09:34:48PM -0500, Fraser Campbell wrote:

> On October 29, 2002 08:30 am, the fabulous I. Forbes wrote:
> > Particularly I need something that checks that their are still
> > upstream NS records pointing to our server for each domain that we
> > host. Also I would like to check that our NS records point to valid
> > name servers (particularly with secondary nameservers) and that our
> > reverse DNS PTR records point to domains with valid A records.
> >
> > I am looking for a Debian friendly utility to help with this. I have
> > had a look at nslint but it does not seem to do what we need it to
> > do.
> I wrote a simple perl script that did most of the things you're looking for 
> just wrapping around the nslookup command (or perhaps it was host).  My 
> checks (from memory) went something like this:


> If you like I can try and track down my script for you.  I've never checked 
> for a canned solution to this problem mostly because I wanted to really 
> understand and analyse every detail myself ... there might be something out 
> there.

Have you also looked at djbdns' dnstrace tool? It "searches for all DNS
servers that can affect the resolution of records of type t under the
domain name fqdn, starting from the root server r. You can list more
than one root server.", and follows all possible paths. 

See http://cr.yp.to/djbdns/debugging.html



E-Advies / Emile van Bergen   |   emile@e-advies.info
tel. +31 (0)70 3906153        |   http://www.e-advies.info

Reply to: