<html>
<head>
<meta http-equiv="Content-Type" content="text/html;
charset=windows-1252">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">Rbldnsd is not a full service DNS
server. It's designed to be simple and quick and only support
reverse lookup type data. It only answers via UDP and does not
listen to any TCP ports.</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">Here is a santized portion of the zone
I load:</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">$SOA 3000 monitor.lcrcomputer.com
postmaster.lcrcomputer.com 0 600 300 86400 300<br>
$NS 3000 rblns2.lcrcomputer.net rblns1.lcrcomputer.net<br>
82.83.49.0-82.83.49.255:127.0.0.2: test text<br>
</div>
<div class="moz-cite-prefix">85.168.250.0-85.168.250.255:127.0.0.2:
test text</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">Line 1 & 2 are the zone
parameters. See an explanation of Bind's zone files for more
information on these entries.</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">Lines 3 & 4 is the data to be
served. <br>
</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">IP address ranges to be listed for
blacklisting:</div>
<div class="moz-cite-prefix">82.83.49.0 through 82.83.49.255</div>
<div class="moz-cite-prefix">85.168.250.0 through 85.168.250.255</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">rbldnsd does not care about zone names
or A records. It resolves and supports reverse ip address lookups
only.</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">My setup puts the blacklisted ip
address into rbl.lcrcomputer.com domain. Here's my startup
parameters for rbldnsd:</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix"><path to executable>/rbldnsd -b
50.205.186.239/53 -l /home/lyle/log/rbldnsd_log -u lyle
-t1800:1800:1800 -c60
rbl.lcrcomputer.com:ip4set:/home/lyle/blklist.zone</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">This zone is loaded into
rbl.lcrcomputer.com and is an ip4set type dataset and the name of
the datafile is blklist.zone</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">This is a closed system and can not be
accessed outside of my internal lcrcomputer.com LAN. So don't
bother to try<GRIN>!</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">To query the dataset I use the command
dig I highly recommend using it and do not use host or nslookup.
You get more information about who/what answered your query plus
some additional info that would be helpfull for troubleshooting.</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">Here's what I get when I query my
rbldnsd looking for ip address 82.83.49.1:</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">dig 1.49.83.82.rbl.lcrcomputer.com<br>
<br>
; <<>> DiG 9.8.4 <<>>
1.49.83.82.rbl.lcrcomputer.com<br>
;; global options: +cmd<br>
;; Got answer:<br>
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id:
22581<br>
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL:
2<br>
<br>
;; QUESTION SECTION:<br>
;1.49.83.82.rbl.lcrcomputer.com. IN A<br>
<br>
;; ANSWER SECTION:<br>
1.49.83.82.rbl.lcrcomputer.com. 1800 IN A 127.0.0.2<br>
<br>
;; AUTHORITY SECTION:<br>
rbl.lcrcomputer.com. 86400 IN NS
rblns2.lcrcomputer.net.<br>
rbl.lcrcomputer.com. 86400 IN NS
rblns1.lcrcomputer.net.<br>
<br>
;; ADDITIONAL SECTION:<br>
rblns1.lcrcomputer.net. 43200 IN A 50.205.186.135<br>
rblns2.lcrcomputer.net. 43200 IN A 50.205.186.239<br>
<br>
;; Query time: 2 msec<br>
;; SERVER: 50.205.186.130#53(50.205.186.130)<br>
;; WHEN: Fri Apr 12 08:42:02 2019<br>
;; MSG SIZE rcvd: 153<br>
</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">If the ip address was not listed in my
dataset, you don't get an 'ANSWER SECTION'. In other words, it
tells you 'I have no data for that ip address'. <br>
</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">Dig also tells you the ip address of
the server you asked. 50.205.186.130 in this case.</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">Understand this and you will be better
able to use rbldnsd.</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">almost forgot for troubleshooting
purposes, ip address 127.0.0.1 is always listed. For my install</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">dig 1.0.0.127.rbl.lcrcomputer.com <br>
</div>
<div class="moz-cite-prefix">will show data or in other words, it's
listed.</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">Lyle Giese</div>
<div class="moz-cite-prefix">LCR Computer Services, Inc.<br>
</div>
<div class="moz-cite-prefix"><br>
</div>
<div class="moz-cite-prefix">On 4/11/2019 1:49 PM, Emanuel Gonzalez
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:SC1P215MB00645015315F08CBC0F8AC7BB42F0@SC1P215MB0064.LAMP215.PROD.OUTLOOK.COM">
<meta http-equiv="Content-Type" content="text/html;
charset=windows-1252">
<style type="text/css" style="display:none;"> P {margin-top:0;margin-bottom:0;} </style>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
Hello,</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
i try to install rbldnsd to Centos 7 arch x86_64. The
installation is correct but I can not return a result</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
Run the service from console, with: rbldnsd -r/etc/rbldnsd/dnsbl
-b 127.0.0.1 foo.emadns.tk:ip4set:spammers</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
In my dns server i create the subdomain:</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
foo.emadns.tk |A | 168.x.x.92 <br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<span style="color: rgb(0, 0, 0); font-family: Calibri,
Helvetica, sans-serif; font-size: 12pt;">r</span><span
style="color: rgb(0, 0, 0); font-family: Calibri, Helvetica,
sans-serif; font-size: 12pt;">bldnsd -r/etc/rbldnsd/dnsbl -b
192.168.200.62 foo.emadns.tk:ip4set:spammers</span><br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<span>cat /etc/rbldnsd/dnsbl/spammers <br>
</span><span>200.x.x.191 </span><br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<span><br>
</span></div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
If I check the IP in my blacklist of subdomains, I received this
error:<br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<span>host -t TXT 191.x.x.200.foo.emadns.tk <br>
</span>
<div>Host 191.x.x.200.foo.emadns.tk not found: 3(NXDOMAIN)<br>
</div>
<span></span><br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<span>but i try the query this form, it's wotk fine</span></div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<span><br>
</span></div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<span><br>
</span></div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<span><span>host -t TXT 191.x.x.200.foo.emadns.tk 168.x.x.92 <br>
</span>
<div>Using domain server:<br>
</div>
<div>Name: 168.x.x.92<br>
</div>
<div>Address: 168.x.x.92#53<br>
</div>
<div>Aliases: <br>
</div>
<div><br>
</div>
<div>191.x.x.200.foo.emadns.tk descriptive text "Blacklisted:
<a class="moz-txt-link-freetext" href="http://xxx.com/bl?200.x.x.191">http://xxx.com/bl?200.x.x.191</a>"<br>
</div>
<div><br>
</div>
<div>any ideas.?</div>
<div><br>
</div>
<div>Regards,</div>
<span></span><br>
</span></div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<span><br>
</span></div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<div><br>
</div>
<span></span><br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<div style="font-family: Calibri, Helvetica, sans-serif;
font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
rbldnsd mailing list
<a class="moz-txt-link-abbreviated" href="mailto:rbldnsd@corpit.ru">rbldnsd@corpit.ru</a>
<a class="moz-txt-link-freetext" href="http://www.corpit.ru/mailman/listinfo/rbldnsd">http://www.corpit.ru/mailman/listinfo/rbldnsd</a>
</pre>
</blockquote>
<p><br>
</p>
</body>
</html>