[rbldnsd] Confused about how to correctly format my zone and startup commands

Benedict White Benedict.White at cse-ltd.co.uk
Wed Jun 10 12:44:07 MSD 2009 

----Original Message-----
From: rbldnsd-bounces at corpit.ru [mailto:rbldnsd-bounces at corpit.ru] On Behalf Of Scott Haneda
Sent: 09 June 2009 18:14
To: Daemon for DNSBLs
Cc: Daemon for DNSBLs
Subject: Re: [rbldnsd] Confused about how to correctly format my zone and startup commands

>Can I see your zonefile.txt. Obfuscated if needed. I want to use
>rbldnsd as a users database. Sort of a proof of concept to check
>username availability.

It is a dnset type and contains enries of the following form

.foo.bar
.drugstore.com
.ipointtoadrugstore.cn

That is it. The leading . tells rbldnsd to reply for foo.bar and www.foo.bar
or indeed someodddomain.foo.bar.

>I figure this could prove better than hitting a users database and
>dealing with looking up a username in over 20 million records.

No idea. A well indexed MySQL or Postgress may be quick as well.

>Just an idea at this point. Any pointers on managing the zone file are
>appreciated. Currently new additions will be appended with echo 'foo'
> > zonefile.txt.

If adding by hand I use echo .somedomain.com >> zonefile.txt
If doing programatically I open in append mode.The single > will over write
the contents of a file the >> appends.

>Removes may use shell commands or a hourly dump of data to replace all.

>What is performance on a reload of 20 million records? Does it matter
>to add one records or regen the entire zone? Does order of data in the
>zone play any roll?

No idea. RBLDNSD reloads its zonefile when it has changed. It depends on how big it is.

>Is there any performance hit to pointing named/bind to rbldnsd as the
>rr or should I just talk directly to rbldnsd over a custom port as to
>not interfere with normal port 53 traffic.

No idea. I douse bind though, with many different bind servers pointing back to
a central one to keep the load low.

>I am definstely not clear on the various types and formats of zone
>files I can use. The examples in the docs show use of $ as a replacing
>variable, which does not make sense as to where in a lookup result
>that data is returned. So far I see a 127.0.0.2 result, is that result
>all that can be returned? Can the return ip be changed?

Same here. I only need to answer for somespammydomain.com and that looks easy.
As for other formats like RBLs for postfix etc I have not tried.

Kind regards


Benedict White

More information about the rbldnsd mailing list