[rbldnsd] Re: How to use dnlist

[Michael Tokarev]

Joerg Backschues wrote:
> Michael Tokarev wrote:
>=20
>> If you still don't get it, please ask more specific
>> question.
>=20
> I try to create a name based rbl. So i hvae created a dnsset list
>=20
> .example.com:127.0.0.2:Address $ is in blacklist
>=20
> and integrated this rbl in BIND with
>=20
> rbldns          IN      A       127.0.0.1
> rbl             IN      NS      rbldns

Ok.  So now, your rbldnsd will reply positively to

   example.com.rbl.mydomain.net
and
   anything.example.com.rbl.mydomain.net

provided you told it that the base zone is rbl.mydomain.net,
like dnset:rbl.mydomain.net:file_name.

> The IP Adresse 192.168.1.1 stands for host1.example.com. The command di=
g=20
>  @localhost 1.1.168.192.rbl.mydomain.net doesn=B4t give back 127.0.0.2.=


Yes, because you didn't tell rbldnsd to list 192.168.1.1.
Dnset is a list of domain names.  Not IP addresses.  It's
irrelevant whenever a listed domain name has A records or
not.  If you want your rbldnsd to reply to queries like
the above - 1.1.168.192.rbl.mydomain.net - you should either
use ip4set and list 192.168.1.1 address there, or list
1.1.168.192 in your dnset file.  I.e., resolve names you
want to list to IP addresses by other means before entering
them into the data files.

> Form my point of view 1.1.168.192.rbl.mydomain.net should be resolved t=
o=20
> host1.example.com. This host name is listed in the dnsset above and=20
> should be anwered by rbldnsd with 127.0.0.2.

Rbldnsd does not do any heuristics.  It replies to names that are
listed, it does not attempt to interpret them in any way.  What you
see is what you get.  You list 192.168.1.1 - it will reply positively
to 1.1.168.192.rbl.mydomain.net.  You list example.com - it will reply
positively to example.com.rbl.mydomain.net.  Nothing more, nothing
less.

/mjt