Re: DJBDNS DNS reverse delegation of a /29 with SBC/AT&T
mark david mcCreary wrote:
> I've got a new DSL line with a small static IP address block -
> 70.255.5.232/29
>
> I have asked AT&T to reverse delegate that to my DNS servers
> so that I can correctly resolve the PTR records, and they
> did. They say they are using the Classless Reverse
> Delegation –RFC 2317 (Section 5.2).
>
> So my first question is what have they called my zone. I
> dig around a little bit, hitting the SBC name server at
> 151.164.1.1, and ask it what it knows about the first
> address in my little subnet.
>
> ;; QUESTION SECTION:
> ;232.5.255.70.in-addr.arpa. IN ANY
>
> ;; ANSWER SECTION:
> 232.5.255.70.in-addr.arpa. 7200 IN NS ns.internet-tools.com.
> 232.5.255.70.in-addr.arpa. 7200 IN NS ns2.internet-tools.com.
> 232.5.255.70.in-addr.arpa. 7200 IN NS ns3.internet-tools.com.
>
> I interpret this to mean that 232.5.255.70.in-addr.arpa is
> the answer, although I don't think this is correct.
It's what they've set up, apparently. I agree it doesn't match anything
I've seen either.
> So I set up these records in TinyDNS.
>
> .232.5.255.70.in-addr.arpa::ns.internet-tools.com
> .232.5.255.70.in-addr.arpa::ns2.internet-tools.com
> .232.5.255.70.in-addr.arpa::ns3.internet-tools.com
> ^234.232.5.255.70.in-addr.arpa:mercury.mail-list.com
> ^236.232.5.255.70.in-addr.arpa:queue.internet-tools.com
> ^237.232.5.255.70.in-addr.arpa:ns4.internet-tools.com
>
>
> However when I query via dig to my servers, I don't get any
> valid answers back.
I've had mixed results (mostly bad) trying to get useful information
from DJBDNS via dig. <g> I keep a BIND caching server around for that
and a few other reasons. Try host (Debian package bind9-host) or
nslookup. (dig +trace is particularly useful, but fails miserably when
the local resolver is DJBDNS.)
FTR, lookups via the BIND caching server in the office here bring back
correct data according to your TinyDNS snippet above.
-kgd
Reply to: