Servery s reverznimi DNS zaznamy

Petr Soucek petr na ryston.cz
Úterý Únor 8 12:52:22 CET 2000


Petr Novotny wrote:
> On 8 Feb 00, at 10:55, Jan Satko wrote:
> > nslookup
> > set que=PTR
> > 21.96.87.193.in-addr.arpa.
> 
> $dig 4.3.2.1.in-addr.arpa ns
> je o neco presnejsi, kdyz se tedy na to NS chcete ptat, ne? :-)

No kdyztak uz 
$dig 3.2.1.in-addr.arpa ns

ale ani to nemusi byt to prave, protoze nikde neni receno, na ktere
urovni probehla delegace. Nejlepsi je podle me stejne

$dig -x 1.2.3.4

a podivat se na "AUTHORITY SECTION"

Zcela jina cesta je jit pres zaznamy v RIPE/ARIN/APNIC databazich, tam
jsou take uvedeny servery zodpovedne za reverzni preklad, na urovni
delegace primo od nich. Muzou byt ale dale delegovany od providera k
zakaznikovi.

Treba kdyz se podivam na nasi sit do RIPE, tak vidim (zkraceno):

inetnum:     194.24.231.0 - 194.24.231.255
rev-srv:     ns1.ryston.cz
rev-srv:     ns2.ryston.cz
rev-srv:     ns1.bohemia.net
rev-srv:     ns.multimedia.cz

A digem vidim totez:

[root na ns2 text]# dig -x 194.24.231.12

; <<>> DiG 8.2 <<>> -x 
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 4
;; QUERY SECTION:
;;      12.231.24.194.in-addr.arpa, type = ANY, class = IN

;; ANSWER SECTION:
12.231.24.194.in-addr.arpa.  1D IN PTR  ns2.ryston.cz.

;; AUTHORITY SECTION:
231.24.194.in-addr.arpa.  1D IN NS  ns1.ryston.cz.
231.24.194.in-addr.arpa.  1D IN NS  ns2.ryston.cz.
231.24.194.in-addr.arpa.  1D IN NS  ns1.bohemia.net.
231.24.194.in-addr.arpa.  1D IN NS  ns.multimedia.cz.

Z ARIN databaze muzu dostat (zkraceno):

   Netname: IPM
   Netnumber: 192.108.136.0

   Domain System inverse mapping provided by:

   DRS.IPM.CZ			192.108.136.10
   NS.MUNI.CZ			147.251.4.33

No a v tomhle pripade dig neukaze nic, prtoze jsou spatne
nakonfigurovany nameservery:

$dig -x 192.108.136.0
; <<>> DiG 8.2 <<>> -x 
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 4
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUERY SECTION:
;;      0.136.108.192.in-addr.arpa, type = ANY, class = IN

viz "status: SERVFAIL"

Ovsem 

$dig -x 192.108.136  

; <<>> DiG 8.2 <<>> -x 
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 2
;; QUERY SECTION:
;;      136.108.192.in-addr.arpa, type = ANY, class = IN

;; ANSWER SECTION:
136.108.192.in-addr.arpa.  5d9h54m21s IN NS  DRS.IPM.CZ.
136.108.192.in-addr.arpa.  5d9h54m21s IN NS  NS.MUNI.CZ.

;; AUTHORITY SECTION:
136.108.192.in-addr.arpa.  5d9h54m21s IN NS  DRS.IPM.CZ.
136.108.192.in-addr.arpa.  5d9h54m21s IN NS  NS.MUNI.CZ.

uz pomuze.

Zdravi

Petr Soucek


Další informace o konferenci Linux