我有两个DNS服务器运行。 对于内部地址来说,查看这两个地址是没问题的:
user@ns1:~$ man named.conf user@ns1:~$ host vh01 vh01.example.de has address 192.168.180.4 user@ns1:~$ host 192.168.180.4 4.180.168.192.in-addr.arpa domain name pointer vh01.example.de. 但:
user@ns1:~$ host google.de google.de has address 209.85.146.103 google.de has address 209.85.146.104 google.de has address 209.85.146.105 google.de has address 209.85.146.106 google.de has address 209.85.146.147 google.de has address 209.85.146.99 google.de mail is handled by 10 google.com.s9b2.psmtp.com. google.de mail is handled by 10 google.com.s9a1.psmtp.com. google.de mail is handled by 10 google.com.s9a2.psmtp.com. google.de mail is handled by 10 google.com.s9b1.psmtp.com. user@ns1:~$ host 209.85.146.103 Host 103.146.85.209.in-addr.arpa not found: 2(SERVFAIL)
我想有这样的东西:
user@ns1:~$ host 209.85.146.103 62.128.1.42 Using domain server: Name: 62.128.1.42 Address: 62.128.1.42#53 Aliases:
user@ns1:~$ host 209.85.146.103 62.128.1.42 Using domain server: Name: 62.128.1.42 Address: 62.128.1.42#53 Aliases:
103.146.85.209.in-addr.arpa域名指针bru01s01-in-f103.1e100.net。
我的服务器被configuration为联系未知区域的根DNS服务器。 我假设这是有效的,因为如果他自己不知道答案,那么正向查找就会被委托。 为什么不委派,如果它不知道一个IP地址?
任何想法,我可以有我的configuration有问题吗?
如上所述,我试过:
user@vh01:~$ dig +trace 103.146.85.209.in-addr.arpa ptr ; > DiG 9.7.3 > +trace 103.146.85.209.in-addr.arpa ptr ;; global options: +cmd . 518400 IN NS m.root-servers.net. . 518400 IN NS e.root-servers.net. . 518400 IN NS h.root-servers.net. . 518400 IN NS l.root-servers.net. . 518400 IN NS f.root-servers.net. . 518400 IN NS k.root-servers.net. . 518400 IN NS b.root-servers.net. . 518400 IN NS g.root-servers.net. . 518400 IN NS j.root-servers.net. . 518400 IN NS d.root-servers.net. . 518400 IN NS c.root-servers.net. . 518400 IN NS i.root-servers.net. . 518400 IN NS a.root-servers.net. ;; Received 244 bytes from 192.168.180.28#53(192.168.180.28) in 1 ms arpa. 172800 IN NS a.root-servers.net. arpa. 172800 IN NS g.root-servers.net. arpa. 172800 IN NS c.root-servers.net. arpa. 172800 IN NS i.root-servers.net. arpa. 172800 IN NS e.root-servers.net. arpa. 172800 IN NS k.root-servers.net. arpa. 172800 IN NS f.root-servers.net. arpa. 172800 IN NS m.root-servers.net. arpa. 172800 IN NS h.root-servers.net. arpa. 172800 IN NS d.root-servers.net. arpa. 172800 IN NS l.root-servers.net. arpa. 172800 IN NS b.root-servers.net. ;; Received 509 bytes from 192.58.128.30#53(j.root-servers.net) in 18 ms in-addr.arpa. 172800 IN NS a.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS b.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS c.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS d.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS e.in-addr-servers.arpa. in-addr.arpa. 172800 IN NS f.in-addr-servers.arpa. ;; Received 421 bytes from 198.41.0.4#53(a.root-servers.net) in 7 ms 209.in-addr.arpa. 86400 IN NS t.arin.net. 209.in-addr.arpa. 86400 IN NS u.arin.net. 209.in-addr.arpa. 86400 IN NS v.arin.net. 209.in-addr.arpa. 86400 IN NS w.arin.net. 209.in-addr.arpa. 86400 IN NS x.arin.net. 209.in-addr.arpa. 86400 IN NS y.arin.net. 209.in-addr.arpa. 86400 IN NS z.arin.net. 209.in-addr.arpa. 86400 IN NS dill.arin.net. ;; Received 200 bytes from 203.119.86.101#53(e.in-addr-servers.arpa) in 325 ms 146.85.209.in-addr.arpa. 86400 IN NS ns4.google.com. 146.85.209.in-addr.arpa. 86400 IN NS ns1.google.com. 146.85.209.in-addr.arpa. 86400 IN NS ns2.google.com. 146.85.209.in-addr.arpa. 86400 IN NS ns3.google.com. ;; Received 127 bytes from 199.212.0.63#53(z.arin.net) in 100 ms 103.146.85.209.in-addr.arpa. 86400 IN PTR bru01s01-in-f103.1e100.net. ;; Received 85 bytes from 216.239.36.10#53(ns3.google.com) in 5 ms
它看起来不错,但为什么呢
user@vh01:~$ host 209.85.146.103 Host 103.146.85.209.in-addr.arpa not found: 2(SERVFAIL)
失败? 但是,不,如果我查询我自己的服务器处理的地址?
user@vh01:~$ host 192.168.180.4 4.180.168.192.in-addr.arpa domain name pointer vh01.example.de.
如果您只有一个公共IP地址,您将不得不要求您的ISP在其反向DNS中创buildPTRlogging。
如果您有一系列公有IP地址,则您的ISP需要为您的DNS服务器提供反向DNS,以便为这些PTRlogging提供反向DNS,并且您需要为这些IP地址build立一个反向DNS区域。 这可以作为单独的CNAMElogging(less于256个IP地址)或作为一个完整的子网转发。