Re: Recent problems with Reverse DNS.

This is a discussion on Re: Recent problems with Reverse DNS. within the Bind Users forums, part of the DNS and Related Forums category; Brett Simpson wrote: > Brett Simpson <simpsonb@hillsboroughcounty.org> wrote: > >>Three weeks ago our internal ...


Go Back   Usenet Forums > DNS and Related Forums > Bind Users

Reload this Page Re: Recent problems with Reverse DNS.

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 08-13-2003
Kevin Darcy
 
Posts: n/a
Default Re: Recent problems with Reverse DNS.
Brett Simpson wrote:

> Brett Simpson <simpsonb@hillsboroughcounty.org> wrote:
> >>Three weeks ago our internal clients were able to connect to hosts by ip
> >>address quickly. Then we started noticing slow connection to various
> internal
> >>host by IP address. If I add a host entry of my workstation to the server
> I'm
> >>connecting to then things are fast again. Sounds like a Reverse DNS problem.
> >>So I updated our db.cache file (which contains the root servers) on both DNS
> >>server and things seemed to be fast again after restarting Bind. But then 10
> >>minutes later things slowed down again.
> >>Our hosts that have public IPs with FQDN are fine. Just the internal hosts
> >>have problems.
>
> >Barry Margolin <barry.margolin () level3 ! com> wrote:
> >If the internal hosts are using private addresses, then you need to have
> >local zone files for the reverse domains. The nameservers that the RFC
> >1918 reverse domains are delegated to don't always respond in a timely
> >fashion.
>
> Hmm... I have a large number of internal private subnets. Making these local
> zone file for reverse lookups would take some time considering I have about
> 100 subnets.

DNS doesn't know from subnets. You could stuff everything into a single
168.192.in-addr.arpa zone if you wanted. And if you don't care what the reverse
lookups resolve to, you could populate it with a single wildcard PTR record. Or
use $GENERATE to just populate it with generic names.

On the other hand, it shouldn't be hard (I know because I've done it in the
past) to just collect all of the data from your forward zones and just massage it
all into PTR records with which to populate your reverse zone(s). Then you
actually have *real* reverse lookups, which is convenient for things like network
troubleshooting (think ping or traceroute), logging, etc. Doing the
forward-to-reverse conversion one-time is not a big deal. Keeping forward and
reverse constantly in synch, however, is a little harder. For this reason (and/or
perhaps others), some folks actually regress back to the neolithic /etc/hosts
file as their primary source of name information and then use evolved hacks like
"h2n" to generate both forward and reverse zones files from that data. In case
you couldn't tell from my description, I don't exactly favor this approach...


- Kevin




Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 09:06 PM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0