[rbldnsd] dns problem?

Scot W scot_a_w at yahoo.com
Wed Oct 6 18:09:19 MSD 2004 

I am trying to help set up rbldnsd in a Wintel
environment (insert MS flame here) for a group that
does not have $$ for Postini.

Wintel server is running DNS and Active Directory for
their environment.

rbldnsd is up and running. Running dig at local host
returns:
[root at maps root]# dig @localhost
6.60.255.68.abuse.nonprofit.local
 
; <<>> DiG 9.2.1 <<>> @localhost
6.60.255.68.abuse.nonprofit.local
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id:
40548
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0,
ADDITIONAL: 0
 
;; QUESTION SECTION:
;6.60.255.68.abuse.nonprofit.local. IN A
 
;; ANSWER SECTION:
6.60.255.68.abuse.nonprofit.local. 3600 IN A  
127.0.0.2
 
;; Query time: 24 msec
;; SERVER: 127.0.0.1#53(localhost)
;; WHEN: Wed Oct  6 08:27:58 2004
;; MSG SIZE  rcvd: 68

HOWEVER running dig using the Wintel DNS server gives:
[root at maps root]# dig 10.10.10.1
6.60.255.68.abuse.nonprofit.local +nord
 
; <<>> DiG 9.2.1 <<>> 10.10.10.1
6.60.255.68.abuse.nonprofit.local +nord
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id:
11111
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1,
ADDITIONAL: 0
 
;; QUESTION SECTION:
;10.10.10.1.                    IN      A
 
;; AUTHORITY SECTION:
..                       8745    IN      SOA    
a.root-servers.net. nstld.verisign-grs.com. 0000000000
0000 000 000000 000
 
;; Query time: 23 msec
;; SERVER: 10.10.10.1#53(10.10.10.1)
;; WHEN: Wed Oct  6 08:35:35 2004
;; MSG SIZE  rcvd: 103
 
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id:
48322
;; flags: qr ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1,
ADDITIONAL: 1
 
;; QUESTION SECTION:
;6.60.255.68.abuse.nonprofit.local. IN A
 
;; AUTHORITY SECTION:
abuse.nonprofit.local. 3600    IN      NS     
maps.nonprofit.local.
 
;; ADDITIONAL SECTION:
maps.nonprofit.local.  3600    IN      A      
10.10.10.10
 
;; Query time: 66 msec
;; SERVER: 10.10.10.1#53(10.10.10.1)
;; WHEN: Wed Oct  6 08:35:35 2004
;; MSG SIZE  rcvd: 109

If I am reading the AUTHORITY SECTION correctly, the
Wintel machine seems to delegate zone "abuse" to the
machine "maps", just not sure why listed addresses are
not being blocked.

TIA for any help.


		
_______________________________
Do you Yahoo!?
Declare Yourself - Register online to vote today!
http://vote.yahoo.com

More information about the rbldnsd mailing list