need help with linux Reverse dns on bind package
Hello Guys .
i have provider who gave me an ip address to my server --> 179.61.178.96 so in their panel i can set the Rdns record . but indeed i want to have own NS server and to be responsible for putty the RDNS myself . so the provider made a rule to fwd records to my server . but i wasn't able to have it working . here are configs : [root@li654-134 ~]# cat /etc/named.conf zone "facebook.com" { type forward; forwarders {8.8.8.8;}; }; options { listen-on port 53 { 127.0.0.1; 198.58.120.134; }; ///////////listen-on-v6 port 53 { ::1; }; directory "/var/named"; dump-file "/var/named/data/cache_dump.db"; statistics-file "/var/named/data/named_stats.txt"; memstatistics-file "/var/named/data/named_mem_stats.txt"; allow-query { localhost; any; }; allow-query-cache { localhost; any; }; recursion yes; dnssec-enable no; dnssec-validation no; forwarders { 8.8.8.8; 8.8.8.8; }; //////forwarders { 8.8.8.8; 8.8.4.4; }; /* Path to ISC DLV key */ bindkeys-file "/etc/named.iscdlv.key"; managed-keys-directory "/var/named/dynamic"; }; logging { channel default_debug { file "data/named.run"; severity dynamic; }; }; zone "." IN { type hint; file "named.ca"; }; ///zone "nsdns.ps" IN { /// type master; //// file "/var/named/nsdns.ps.zone"; ////}; zone "96.178.61.179.in-addr.arpa" IN { type master; file "/var/named/96.178.61.179.in-addr.arpa"; allow-update { any; }; }; ///179.61.178.96 ///96.178.61.179 include "/etc/named.rfc1912.zones"; include "/etc/named.root.key"; [root@li654-134 ~]# cat /var/named/ 96.178.61.179.in-addr.arpa dynamic/ named.empty named.loopback data/ named.ca named.localhost slaves/ [root@li654-134 ~]# cat /var/named/96.178.61.179.in-addr.arpa @ IN SOA ns1.nsdns.ps. root.nsdns.ps. ( 2007040301 ;serial 14400 ;refresh 3600 ;retry 604800 ;expire 10800 ;minimum ) 96.178.61.179.in-addr.arpa. IN NS ns1.nsdns.ps. 2 IN PTR theyacsngoandproject.com. 3 IN PTR 5ab3c14.theyacsngoandproject.com. [root@li654-134 ~]# when i check reverse dns of the ip 179.61.178.96 on site --> https://mxtoolbox.com/reverselookup.aspx i have no Rdns . any wrong my config above ? say i want to setup the Rdns to be as --> s1.google.com whats needed to change on config above ? is there any mistakes i have above ? the provider said :: (((We have only created the following record in the zone 178.61.179.in-addr.arpa Name: 96.178.61.179.in-addr.arpa Type: NS Content: 198.58.120.134 TTL: 3600 This zone 178.61.179.in-addr.arpa is created in our DNS servers below NS9.HOST1PLUS.COM NS10.HOST1PLUS.COM NS8.HOST1PLUS.COM As a result we are forwarding DNS queries from our DNS servers above to your provided server 198.58.120.134 as per the following trace output: ; DiG 9.8.2rc1-RedHat-9.8.2-0.62.rc1.el6_9.5 NS +trace 96.178.61.179.in-addr.arpa ;; global options: +cmd . 79377 IN NS m.root-servers.net. . 79377 IN NS j.root-servers.net. . 79377 IN NS a.root-servers.net. . 79377 IN NS e.root-servers.net. . 79377 IN NS l.root-servers.net. . 79377 IN NS k.root-servers.net. . 79377 IN NS d.root-servers.net. . 79377 IN NS b.root-servers.net. . 79377 IN NS i.root-servers.net. . 79377 IN NS f.root-servers.net. . 79377 IN NS h.root-servers.net. . 79377 IN NS g.root-servers.net. . 79377 IN NS c.root-servers.net. ;; Received 228 bytes from 181.41.222.18#53(181.41.222.18) in 55 ms in-addr.arpa. 172800 IN NS a.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS b.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS c.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS d.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS e.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS f.in-addr-servers.arpa. ;; Received 420 bytes from 199.7.83.42#53(199.7.83.42) in 480 ms 179.in-addr.arpa. 86400 IN NS a.arpa.dns.br. 179.in-addr.arpa. 86400 IN NS ns.lacnic.net. 179.in-addr.arpa. 86400 IN NS ns2.lacnic.net. 179.in-addr.arpa. 86400 IN NS ns3.afrinic.net. 179.in-addr.arpa. 86400 IN NS sec3.apnic.net. 179.in-addr.arpa. 86400 IN NS lacnic.authdns.ripe.net. 179.in-addr.arpa. 86400 IN NS tinnie.arin.net. 179.in-addr.arpa. 86400 IN NS ns-lacnic.nic.mx. ;; Received 257 bytes from 196.216.169.10#53(196.216.169.10) in 398 ms 178.61.179.in-addr.arpa. 86400 IN NS NS9.HOST1PLUS.COM. 178.61.179.in-addr.arpa. 86400 IN NS NS10.HOST1PLUS.COM. 178.61.179.in-addr.arpa. 86400 IN NS NS8.HOST1PLUS.COM. ;; Received 112 bytes from 2001:500:13::c7d4:35#53(2001:500:13::c7d4:35) in 420 ms 96.178.61.179.in-addr.arpa. 3600 IN NS 198.58.120.134. ;; Received 72 bytes from 179.61.195.24#53(179.61.195.24) in 114 ms ;; connection timed out; no servers could be reached )))) any word Guys ? kind regard |
Quote:
That said, if he gave you the delegation of that IP, then he must point 96.178.61.179.in-addr.arpa zone to your dns server. Right now from what you've posted, that is 198.58.120.134, but there is no dns server listening on that IP. Also in the 96.178.61.179.in-addr.arpa zonefile you have set NS to ns1.nsdns.ps, but this gives: Code:
dig -x 179.61.178.96 @ns1.nsdns.ps You should try to resolve the above problems first and then we could go on for the rest... Regards |
Quote:
thanks for your kind reply . about # 1 it was down and i put it up now there is DNS bro here check : [root@li654-134 ~]# netstat -aunt | grep 53 tcp 0 0 198.58.120.134:53 0.0.0.0:* LISTEN udp 0 0 198.58.120.134:53 0.0.0.0:* yes I'm just doing a test for 1 ip if it works i will do the rest for other ips . about ns1.nsdns.ps what is that ? i want the reverse dns to be ns1.nsdns.ps when i check the reverse ip of my ip . is my config above ok ? may be I'm wrong ! again i want the reverse dns of the to be ns1.nsdns.ps not sure what config above needed to be modified . kind regards |
Quote:
Quote:
In this case your ISP should delegate to your the whole 179.61.178.x/y subnet you own Quote:
So you need a zonefile like the following: Code:
$TTL 86400 |
Quote:
thank you , it seems the provider block port 53 i emailed them and waiting their reply . for now i have last Q the SOA whats should i put here ? ns1.nsdns.ps. root.nsdns.ps. ??? or something else ? regards |
Quote:
Just remember to increase the serial whenever you do changes in the zone file. In the meantime, waiting for your ISP, you can take a look at this e-book about dns. You can find more details about the SOA RR for example ;) Regards |
Guys ,
i had no block on server now : here is my last config after modifications : zone "178.61.179.in-addr.arpa" IN { type master; file "/var/named/178.61.179.in-addr.arpa"; allow-update { any; }; }; ///179.61.178.96 ///96.178.61.179 include "/etc/named.rfc1912.zones"; include "/etc/named.root.key"; [root@li654-134 ~]# cat /var/named/178.61.179.in-addr.arpa @ IN SOA ns1.yournameserver.com. root.domain.com. ( 2007040301 ;serial 14400 ;refresh 3600 ;retry 604800 ;expire 10800 ;minimum ) 178.61.179.in-addr.arpa. IN NS ns1.yournameserver.com. 178.61.179.in-addr.arpa. IN NS ns2.yournameserver.com. 2 IN PTR blah1.domain.com. 3 IN PTR blah2.domain.com. 4 IN PTR blah3.domain.com. 5 IN PTR blah4.domain.com. 6 IN PTR blah5.domain.com. 96 IN PTR blah5.domain.com. [root@li654-134 ~]# still Rdns not working ! regards |
The name of your zone should be 178.61.179.in-addr.arpa not 96.178.61.179.in-addr.arpa.
|
Quote:
already like that : zone "178.61.179.in-addr.arpa" IN { type master; file "/var/named/178.61.179.in-addr.arpa"; allow-update { any; }; }; [root@li654-134 ~]# cat /var/named/178.61.179.in-addr.arpa @ IN SOA ns1.yournameserver.com. root.domain.com. ( 2007040301 ;serial 14400 ;refresh 3600 ;retry 604800 ;expire 10800 ;minimum ) 178.61.179.in-addr.arpa. IN NS ns1.yournameserver.com. 178.61.179.in-addr.arpa. IN NS ns2.yournameserver.com. 2 IN PTR blah1.domain.com. 3 IN PTR blah2.domain.com. 4 IN PTR blah3.domain.com. 5 IN PTR blah4.domain.com. 6 IN PTR blah5.domain.com. 96 IN PTR blah5.domain.com. [root@li654-134 ~]# regards |
It works from here if I use your dns:
Code:
dig -x 179.61.178.96 @198.58.120.134 Ditch the forwarders clause in named.conf, restart bind and see if it helps. Another guess is that it's a firewall, dnssec or similar problem. |
Quote:
Yes but i test from the site : https://mxtoolbox.com/SuperTool.aspx...&run=toolpage# may be the site above take time to refresh ? also i want be setting my sever as DNS server for forward . i just made it to own my own Rdns records . thanks |
Quote:
Are you sure your ISP gave you the whole 179.61.178.0/24 zone delegation? Usually they delegate you the subnet you've bought. You should verify it with them. Quote:
|
Quote:
the provider only gave me the ip 179.61.178.96 if it work then they will give me other ranges . plz only check the ip 179.61.178.96 thanks |
Quote:
So why are you trying to become authoritative for the whole 178.61.179.in-addr.arpa zone? Use 96.178.61.179.in-addr.arpa as the zone name in /etc/named.conf and the zonefile I've posted in #4 above and see what you get. |
Quote:
i did ... same result . here is named.conf file : zone "96.178.61.179.in-addr.arpa" IN { type master; file "/var/named/96.178.61.179.in-addr.arpa"; allow-update { any; }; }; and hete is the zone file : [root@li654-134 ~]# cat /var/named/96.178.61.179.in-addr.arpa @ IN SOA ns1.yournameserver.com. root.domain.com. ( 2007040301 ;serial 14400 ;refresh 3600 ;retry 604800 ;expire 10800 ;minimum ) 96.178.61.179.in-addr.arpa. IN NS li654-134.members.linode.com. 96.178.61.179.in-addr.arpa. IN PTR ns1.nsdns.ps. still no Rdns on the public websites any way to see bind logs if there is trial form someone to take this Rdns my side ? egards |
All times are GMT -5. The time now is 03:08 AM. |