[SATLUG] DNS/BIND experts? Need someone to look over my new setup!

Bruce Dubbs bruce.dubbs at gmail.com
Sun Dec 6 20:44:04 CST 2009


KC wrote:
> Hi all!
> 
> I finally configured a pair of BIND VMs and got AT&T to reverse
> delegate, the Roots to see me as legit, and gkg to accept this.
> 
> Could anyone look over my configs and dig my domain and tell me how
> it looks?
> 
> I am kcinfosys.net at 67.65.223.80/28 Servers are arthur (SOA) .81,
> and guinevere at .82
> 
> Running ubuntu 8.04 lts and BIND 9.whatever-was-in-the-ubuntu-repo
> 
> I am most concerned about the reverse dns setup. I have a /28. AT&T
> has supposedly reverse delegated that to me, but I am not sure what I
> am looking at.

We may need to wait for TTLs to expire, but I think something is not 
right or that a firewall is not allowing udp packets through.  I'd wait 
24 hours before complaining.

   -- Bruce

$ dig kcinfosys.net

; <<>> DiG 9.3.3 <<>> kcinfosys.net
;; global options:  printcmd
;; connection timed out; no servers could be reached

$ ping 67.65.223.81
PING 67.65.223.81 (67.65.223.81): 56 data bytes
64 bytes from 67.65.223.81: icmp_seq=0 ttl=243 time=41.267 ms
64 bytes from 67.65.223.81: icmp_seq=1 ttl=243 time=38.928 ms
--- 67.65.223.81 ping statistics ---
2 packets transmitted, 2 packets received, 0% packet loss
round-trip min/avg/max/stddev = 38.928/40.098/41.267/1.169 ms

$ ping 67.65.223.82
PING 67.65.223.82 (67.65.223.82): 56 data bytes
--- 67.65.223.82 ping statistics ---
5 packets transmitted, 0 packets received, 100% packet loss

$ dig -x 67.65.223.80
; <<>> DiG 9.3.3 <<>> -x 67.65.223.80
;; global options:  printcmd
;; connection timed out; no servers could be reached

$ dig -x 67.65.223.81
;; reply from unexpected source: 24.93.41.127#53, expected 24.93.41.128#53
;; Warning: ID mismatch: expected ID 51484, got 6302
;; reply from unexpected source: 24.93.41.127#53, expected 24.93.41.128#53
;; Warning: ID mismatch: expected ID 51484, got 6302
;; reply from unexpected source: 24.93.41.127#53, expected 24.93.41.128#53
;; Warning: ID mismatch: expected ID 51484, got 6302

; <<>> DiG 9.3.3 <<>> -x 67.65.223.81
;; global options:  printcmd
;; connection timed out; no servers could be reached

Looks like a roadrunner error:

$ dig -x 24.93.41.127

; <<>> DiG 9.3.3 <<>> -x 24.93.41.127
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34900
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;127.41.93.24.in-addr.arpa.     IN      PTR

;; ANSWER SECTION:
127.41.93.24.in-addr.arpa. 778  IN      PTR 
dns-redirect-lb-01.texas.rr.com.

;; Query time: 22 msec
;; SERVER: 24.93.41.128#53(24.93.41.128)
;; WHEN: Sun Dec  6 20:39:43 2009
;; MSG SIZE  rcvd: 88

$ whois kcinfosys.net

Whois Server Version 2.0
...

    Domain Name: KCINFOSYS.NET
    Registrar: GKG.NET, INC.
    Whois Server: whois.gkg.net
    Referral URL: http://www.gkg.net
    Name Server: ARTHUR.KCINFOSYS.NET
    Name Server: GUINEVERE.KCINFOSYS.NET
    Status: clientTransferProhibited
    Updated Date: 06-dec-2009
    Creation Date: 06-mar-2006
    Expiration Date: 06-mar-2010

 >>> Last update of whois database: Mon, 07 Dec 2009 02:36:46 UTC <<<



More information about the SATLUG mailing list