[users] Report Errors from dnsreport.com
I am running a report from dnsreports.com for my domain cpsi-mis.com I am getting a couple of fails that I need to work out. *Fail Missing (stealth) nameservers * I think this might be the problem: I am not getting the ns entry with vegasdns (or maybe I don't understand dns fully) My DNS server is ns-atl-b.cpsinet.com but I cannot enter that as a NS record. I will enter in as ns-atl-b.cpsinet.com.cpsi-mis.com. How can this be resolved? The next error is *Stealth NS record leakage * What is this and how can I plug the leak? I am also getting a warn about this: WARNING: Your SOA (Start of Authority) record states that your *master* (primary) name server is: *68.17.65.220.*. However, that server is not listed at the parent servers as one of your NS records! This is probably legal, but you should be sure that you know what you are doing. and this: WARNING: Your SOA serial number is: *1134711922*. That is OK, but the recommended format (per RFC1912 http://www.DNSstuff.com/pages/rfc1912.htm 2.2) is MMDDnn, where 'nn' is the revision. For example, if you are making the 3rd change on 02 May 2000, you would use 250203. This number *must* be incremented every time you make a DNS change. Your SOA serial appears to be the number of seconds since midnight 01 Jan 1970 when the last DNS change was made (tinydns format). That works out to be *Fri Dec 16 00:45:22 2005 * GMT. Thaks for the help in clearing these up. Great product by the way.
Re: [users] Report Errors from dnsreport.com
Bill Shupp wrote: Jeff Montgomey wrote: Probably help if I include my records: #cpsi-mis.com +mail.cpsi-mis.com:68.17.65.212:3600 +ns-atl-b.cpsi-mis.com:68.17.65.220:3600 @cpsi-mis.com::mail.cpsi-mis.com:0:3600 cpsi-mis.com::ns-atl-b:3600 Zcpsi-mis.com:68.17.65.220:domainadmin.cpsi-mis.com::16384:2048:1048576:2560:86400 You're missing an a record for ns-mob-b.cpsinet.com. Try adding: +ns-mob-b.cpsi-mis.com:70.158.1.69:3600 Regards, Bill Thanks for all the help. Is there are way to fix the serial numbers to be in that date format?
Re: [users] Reverse DNS Question
My IP range is 12.160.193.0/28 (0/28.193.160.12.in-addr.arpa). Yes it is delegated to me and this ns is registered. Thanks for the help. Chris Odell wrote: What is the ip range that is assigned to you? Did you ask your upstream provider to delegate the range to you? Are your NS registered? -Original Message- From: Jeff Montgomey [mailto:[EMAIL PROTECTED] Sent: Thursday, January 12, 2006 11:46 AM To: users@vegadns.org Subject: Re: [users] Reverse DNS Question Chris Odell wrote: I believe that you have a extra octet in your domain entry. Foe the domain it should be 193.160.12.in-addr.arpa and it looks like you have 2.193.160.12.in-addr.arpa Make new domains without the last octet and you should be good - at least that how mine is Chris Odell -Original Message- From: Jeff Montgomey [mailto:[EMAIL PROTECTED] Sent: Thursday, January 12, 2006 9:49 AM To: users@vegadns.org Subject: Re: [users] Reverse DNS Question Bob Hutchinson wrote: On Thursday 05 Jan 2006 20:39, Jeff Montgomey wrote: I have a block of public IP's that I need to create PTR records for. When I try to enter them into VegaDNS I get a error saying: *Error: domain 0/28.58.147.12.in-addr.arpa does not appear to be a valid domain name *It will work if I do 85.147.12.in-adr.arpa but I do not own that whole block. What should I do? You could tweak the code in domains.php, (circa line 217 in version 0.9.9) to accept the '/' HTH I still cannnot get reverse PTR's to work. I tried this 2.193.160.12.in-addr.arpa http://ns-atl-b.cpsinet.com/index.php?VDNS_Sessid=2a2014113f89dbbe50c1 e8f3b e22ecbastate=logged_inmode=recordsrecord_mode=edit_recordrecord_id= 988d omain=2.193.160.12.in-addr.arpa PRT mail.gracecottage.org #2.193.160.12.in-addr.arpa 2.193.160.12.in-addr.arpa::ns-atl-b.cpsinet.com:3600 2.193.160.12.in-addr.arpa::ns-mob-b.cpsinet.com:3600 2.193.160.12.in-addr.arpa::ns-mob-s.cpsinet.com:3600 2.193.160.12.in-addr.arpa::ns1.cpsinet.com:3600 2.193.160.12.in-addr.arpa::ns2.cpsinet.com:3600 ^2.193.160.12.in-addr.arpa:mail.gracecottage.org:3600 Z2.193.160.12.in-addr.arpa:68.17.65.220:domainadmin.cpsi-mis.com::16384 :2048 :1048576:2560:864 I then I test and it does not work off the this server it will finally hit my windows and resolve. Good Point I changed it now it looks like this 193.160.12.in-addr.arpa or in the data file: #193.160.12.in-addr.arpa 193.160.12.in-addr.arpa::ns-atl-b.cpsinet.com:3600 193.160.12.in-addr.arpa::ns-mob-b.cpsinet.com:3600 193.160.12.in-addr.arpa::ns-mob-s.cpsinet.com:3600 193.160.12.in-addr.arpa::ns1.cpsinet.com:3600 193.160.12.in-addr.arpa::ns2.cpsinet.com:3600 ^2.193.160.12.in-addr.arpa:mail.gracecottage.org:3600 Z193.160.12.in-addr.arpa:68.17.65.220:domainadmin.cpsi-mis.com::16384:2048:1 048576:2560:86400 But is still does not work. From dnsstuff: Asking ns-alt-b.cpsinet.com. for 2.0/28.193.160.12.in-addr.arpa. PTR record: Timed out [at 0.0.0.0]. Trying again.
Re: [users] Reverse DNS Question
how did you do the reverse search? I do have a windows dns server that this record works on. ns1.cpsinet.com but with ns-atl-b it is not working. Chris Odell wrote: I just did a reverse search and it looks like its working to me. -Original Message- From: Jeff Montgomey [mailto:[EMAIL PROTECTED] Sent: Monday, January 16, 2006 7:39 AM To: users@vegadns.org Subject: Re: [users] Reverse DNS Question Ok I did like you said and updated using the update-data.sh and here is my data file now: #193.160.12.in-addr.arpa 193.160.12.in-addr.arpa::dmtu.mt.ns.els-gms.att.net:3600 ^2.193.160.12.in-addr.arpa:mail.gracecottage.org:3600 Z193.160.12.in-addr.arpa:68.17.65.220:domainadmin.cpsi-mis.com::16384:2048:1 048576:2560:86400 It still does not work.: Asking b.root-servers.net for 2.193.160.12.in-addr.arpa PTR record: b.root-servers.net says to go to dmtu.mt.ns.els-gms.att.net. (zone: 12.in-addr.arpa.) Asking dmtu.mt.ns.els-gms.att.net. for 2.193.160.12.in-addr.arpa PTR record: Got CNAME referral to 2.0/28.193.160.12.in-addr.arpa. at server ns-alt-b.cpsinet.com. (zone 0/28.193.160.12.in-addr.arpa.) [from 12.127.16.70] Asking ns-alt-b.cpsinet.com. for 2.0/28.193.160.12.in-addr.arpa. PTR record: Timed out [at 0.0.0.0]. Trying again. Also, thanks for the tip. I logged back in and changed the password and logged out again. Chris Odell wrote: Jeff, Your zone is still a full IP - Domain: 2.193.160.12.in-addr.arpa and it should be - Domain: 193.160.12.in-addr.arpa . Just delete that domain and create it WITHOUT the last octet of the IP i.e. everything except for the 2. I don't know if you realize it, but when you are posting the links to the mail people can click them and be in your session already authenticated. Chris Odell -Original Message- From: Jeff Montgomey [mailto:[EMAIL PROTECTED] Sent: Monday, January 16, 2006 6:19 AM To: users@vegadns.org Subject: Re: [users] Reverse DNS Question I added entries for the authoritive name server My entry look like this: 2.193.160.12.in-addr.arpa http://ns-atl-b.cpsinet.com/index.php?VDNS_Sessid=074e6829d0699401ace1 b8e72 de3a7bcstate=logged_inmode=recordsrecord_mode=edit_recordrecord_id= 1016 domain=2.193.160.12.in-addr.arpa NS dbru.br.ns.els-gms.att.net n/a 3600 Trash http://ns-atl-b.cpsinet.com/index.php?VDNS_Sessid=074e6829d0699401ace1 b8e72 de3a7bcstate=logged_inmode=recordsrecord_mode=deleterecord_id=1016 domai n=2.193.160.12.in-addr.arpa 2.193.160.12.in-addr.arpa http://ns-atl-b.cpsinet.com/index.php?VDNS_Sessid=074e6829d0699401ace1 b8e72 de3a7bcstate=logged_inmode=recordsrecord_mode=edit_recordrecord_id= 1017 domain=2.193.160.12.in-addr.arpa PTR mail.otishealthcarecenter.org n/a 3600 Trash http://ns-atl-b.cpsinet.com/index.php?VDNS_Sessid=074e6829d0699401ace1 b8e72 de3a7bcstate=logged_inmode=recordsrecord_mode=deleterecord_id=1017 domai n=2.193.160.12.in-addr.arpa 2.193.160.12.in-addr.arpa http://ns-atl-b.cpsinet.com/index.php?VDNS_Sessid=074e6829d0699401ace1 b8e72 de3a7bcstate=logged_inmode=recordsrecord_mode=edit_recordrecord_id= 1018 domain=2.193.160.12.in-addr.arpa PTR mail.gracecottage.org n/a 3600 Trash http://ns-atl-b.cpsinet.com/index.php?VDNS_Sessid=074e6829d0699401ace1 b8e72 de3a7bcstate=logged_inmode=recordsrecord_mode=deleterecord_id=1018 domai n=2.193.160.12.in-addr.arpa It still is not working Asking d.root-servers.net for 2.193.160.12.in-addr.arpa PTR record: d.root-servers.net says to go to dmtu.mt.ns.els-gms.att.net. (zone: 12.in-addr.arpa.) Asking dmtu.mt.ns.els-gms.att.net. for 2.193.160.12.in-addr.arpa PTR record: Got CNAME referral to 2.0/28.193.160.12.in-addr.arpa. at server ns-alt-b.cpsinet.com. (zone 0/28.193.160.12.in-addr.arpa.) [from 12.127.16.70] Asking ns-alt-b.cpsinet.com. for 2.0/28.193.160.12.in-addr.arpa. PTR record: Timed out [at 0.0.0.0]. Trying again. Chris Odell wrote: Who says he was entering that in his PTR records - he was just merly telling me what his range was. I think his issue is that he does not have the entries for the authoritive name servers. Chris Odell -Original Message- From: Karl Shea [mailto:[EMAIL PROTECTED] Sent: Friday, January 13, 2006 9:44 AM To: users@vegadns.org Subject: Re: [users] Reverse DNS Question Reverse DNS doesn't work that way, you had it right the first time. You cannot have a slash in a host name; only letters, numbers, and hyphens. It's a per-IP lookup, not for a whole range. If you have an IP you want to have a reverse entry for, for example you want 12.160.192.6 to resolve to ahost.example.com, then 6.192.160.12.in-addr.arpa has a PTR record for ahost.example.com. I think you may want to search Google for an example of how it works. -Karl Jeff Montgomey wrote: My IP range is 12.160.193.0/28 (0/28.193.160.12.in-addr.arpa). Yes it is delegated to me and this ns is registered
