[rbldnsd] How to implement?
Chris Knipe
savage at savage.za.org
Thu Aug 11 14:33:12 MSD 2005
Hi all,
I'm running RBLDNSD, but as of late, I've been starting to get errors....
Initially, I ran it out of bind, puting in a forwarding zone in bind, and
forwarding the requests to rbldnsd. This worked great, but it lacked the
capability that I could add ACLs to the forwarding zone in order to only
allow certain hosts to query the RBL.
Since then, I have moved RBLDNSD to accept queries directly, but now, I'm
getting SERVFAIL and NXDOMAIN* errors...
I've basically done this:
IP Config: x.x.x.1 (BIND), x.x.x.2 (RBLDNS)
In my zone:
nsA IN A x.x.x.2
rbldnsd IN NS nsA.mydomain.com
Then, I firewall incoming packets on x.x.x.2 port 53 (no outgoing
firewalls).
A tcpdump shows that SOMETIMES, the queries comes in to x.x.x.2, but almost
always, a NXDOMAIN* or SERVFAIL is returned.
Can anyone perhaps give me some hints here?
I need to get rbldnsd running again, but I must have ACLs on it to limit who
can submit queries to it....
Thanks,
Chris.
More information about the rbldnsd
mailing list