-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 At some point hitherto, John Abreau hath spake thusly: > jabr@asgard:~ $ host 216.235.254.231 > 231.254.235.216.in-addr.arpa. domain name pointer asgard.blu.org. > > This works fine locally on the blu.org server, where it refers to its > own dns server on localhost. From outside the blu.org server, using > some other dns server, the reverse lookup fails:
Do you own the entire C block? I understand there are tricks you can do to be responsible for a portion of a C block, and I think BIND 9 actually has features built into it to allow for that. However, older versions of BIND were not intended to accomodate networks smaller than a full class C. You may need to get your upstream provider (or whoever has been delegated to do reverse DNS for that block) to assign reverse DNS for you, as I have had to do in the past. If you DO own the entire C block, you may still need to get your provider to delegate reverse lookups for it to your server. According to my DNS server, US Datacenters is responsible for that C block: > set type=ns > 254.235.216.in-addr.arpa Server: 172.16.1.1 Address: 172.16.1.1#53 Non-authoritative answer: 254.235.216.in-addr.arpa nameserver = NS2.USDATACENTERS.COM. 254.235.216.in-addr.arpa nameserver = NS3.USDATACENTERS.COM. 254.235.216.in-addr.arpa nameserver = NS1.USDATACENTERS.COM. Authoritative answers can be found from: NS2.USDATACENTERS.COM internet address = 216.235.240.12 NS3.USDATACENTERS.COM internet address = 216.235.240.16 NS1.USDATACENTERS.COM internet address = 216.235.240.11 You'll need to get them to delegate it, or to assign reverse addresses for you. Or play other DNS games that they may not be willing to play. [They could do something like this (syntax not tecnically correct for purposes of demonstration only): 231.254.235.216.in-addr.arpa IN NS asgard.blu.org Some providers shy away from doing this, as it makes their config kinda messy and/or cuz they like to maintain control... They'd need one NS record for each address you have, IIRC.] - -- Derek Martin [EMAIL PROTECTED] - --------------------------------------------- I prefer mail encrypted with PGP/GPG! GnuPG Key ID: 0x81CFE75D Retrieve my public key at http://pgp.mit.edu Learn more about it at http://www.gnupg.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE8ZBsDdjdlQoHP510RAmMoAJ0QvIS4qOm9J7nsFMCmNHgQsaqwRQCeNbIe hYvoDxstaWal/fELPKA8EbU= =AKpY -----END PGP SIGNATURE----- ***************************************************************** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *****************************************************************
