configurar dns reverso embratel no bind [RESOLVIDO]

1. configurar dns reverso embratel no bind [RESOLVIDO]

Bruno
brunooo

(usa Debian)

Enviado em 02/10/2012 - 15:54h

boa tarde galera...

estou meio perdido em relação a configuração da embratel no bind..

Alguém já precisou configurar o dns reverso?


Obrigado


  


2. Re: configurar dns reverso embratel no bind [RESOLVIDO]

Bruno
brunooo

(usa Debian)

Enviado em 03/10/2012 - 08:08h

o que eu já fiz...

adicionei no named.conf

zone "128-143.x.x.189.in-addr.arpa" {
type master;
file "128-143.x.x.189.in-addr.arpa";
};

zone "125.255.200.in-addr.arpa." {
type master;
file "125.255.200.in-addr.arpa";
};

e depois criei o arquivo db.128-143.x.x.189.in-addr.arpa

$TTL 604800
@ IN SOA srv-dados.ipmfl.com. root.ipmfl.com. (
2004052701 ; serial
3600 ; refresh
900 ; retry
604800 ; expire
1200 ) ; minimum
;
@ IN NS ns.embratel.net.br.
@ IN NS ns2.embratel.net.br.
@ IN NS srv-dados.ipmfl.com.
@ IN MX 0 srv-dados.ipmfl.com.

131 IN PTR mail.ipmfl.com.
131 IN PTR srv-dados.ipmfl.com.

e também o arquivo db.125.255.200.in-addr.arpa

$TTL 604800
@ IN SOA srv-dados.ipmfl.com. root.ipmfl.com. (
2004052701 ; serial
3600 ; refresh
900 ; retry
604800 ; expire
1200 ) ; minimum
;
@ IN NS ns.embratel.net.br.

206 IN PTR www.embratel.net.br.

e o firewall está liberado.


olhando o syslog....

está assim...

Oct 3 09:26:07 srv-dados named[18866]: starting BIND 9.5.1-P3 -u bind
Oct 3 09:26:07 srv-dados named[18866]: found 8 CPUs, using 8 worker threads
Oct 3 09:26:07 srv-dados named[18866]: using up to 4096 sockets
Oct 3 09:26:07 srv-dados named[18866]: loading configuration from '/etc/bind/named.conf'
Oct 3 09:26:07 srv-dados named[18866]: max open files (1024) is smaller than max sockets (4096)
Oct 3 09:26:07 srv-dados named[18866]: using default UDP/IPv4 port range: [1024, 65535]
Oct 3 09:26:07 srv-dados named[18866]: using default UDP/IPv6 port range: [1024, 65535]
Oct 3 09:26:07 srv-dados named[18866]: listening on IPv6 interfaces, port 53
Oct 3 09:26:07 srv-dados named[18866]: listening on IPv4 interface lo, 127.0.0.1#53
Oct 3 09:26:07 srv-dados named[18866]: listening on IPv4 interface eth0, 192.168.100.1#53
Oct 3 09:26:07 srv-dados named[18866]: listening on IPv4 interface eth1, 192.168.10.1#53
Oct 3 09:26:07 srv-dados named[18866]: listening on IPv4 interface eth2, 10.0.0.3#53
Oct 3 09:26:07 srv-dados named[18866]: /etc/bind/named.conf:5: using specific query-source port suppresses port randomization and can be insecure.
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: 254.169.IN-ADDR.ARPA
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: 2.0.192.IN-ADDR.ARPA
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: 255.255.255.255.IN-ADDR.ARPA
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: D.F.IP6.ARPA
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: 8.E.F.IP6.ARPA
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: 9.E.F.IP6.ARPA
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: A.E.F.IP6.ARPA
Oct 3 09:26:07 srv-dados named[18866]: automatic empty zone: B.E.F.IP6.ARPA
Oct 3 09:26:07 srv-dados named[18866]: command channel listening on 127.0.0.1#953
Oct 3 09:26:07 srv-dados named[18866]: command channel listening on ::1#953
Oct 3 09:26:07 srv-dados named[18866]: zone 0.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 10.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 0.10.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 127.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 16.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 17.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 18.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 19.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 20.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 21.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 22.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 23.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 24.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 25.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 26.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 27.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 28.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 29.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 30.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 31.172.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 131.x.x.189.in-addr.arpa/IN: loaded serial 2004052701
Oct 3 09:26:07 srv-dados named[18866]: zone 168.192.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone 125.255.200.in-addr.arpa/IN: loaded serial 2004052701
Oct 3 09:26:07 srv-dados named[18866]: zone 255.in-addr.arpa/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone ipanemajewelry.com/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone ipanemajoias.com/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone ipmfl.com/IN: loaded serial 1
Oct 3 09:26:07 srv-dados named[18866]: zone localhost/IN: loaded serial 2
Oct 3 09:26:07 srv-dados named[18866]: running


e depois vem vários
Oct 3 09:28:16 srv-dados named[18866]: network unreachable resolving 'ns2.panthercdn.com/AAAA/IN': 2001:503:231d::2:30#53

** já vi que este network unreachable resolving tem a ver com config de ipv6 no bind..

e quando dou um host 189.x.x.131

ele dá

131.x.x.189.in-addr.arpa has no PTR record


----- edit

acho que consegui...

quando dou um host 189.x.x.131

131.d.d.189.in-addr.arpa is an alias for 131.128-143.x.x.189.in-addr.arpa.
131.128-143.x.x.189.in-addr.arpa domain name pointer srv-dados.ipmfl.com.
131.128-143.x.x.189.in-addr.arpa domain name pointer mail.ipmfl.com.






3. Re: configurar dns reverso embratel no bind [RESOLVIDO]

Bruno
brunooo

(usa Debian)

Enviado em 03/10/2012 - 10:52h

bom..

funcionou....

vou deixar aí, vai que alguém precisa configurar também!


srv-dados:/var/cache/bind# nslookup 189.x.x.131
Server: 127.0.0.1
Address: 127.0.0.1#53

Non-authoritative answer:
131.x.x.189.in-addr.arpa canonical name = 131.128-143.x.x.189.in-addr.arpa.
131.128-143.x.x.189.in-addr.arpa name = mail.ipmfl.com.
131.128-143.x.x.189.in-addr.arpa name = srv-dados.ipmfl.com.

Authoritative answers can be found from:
128-143.x.x.189.in-addr.arpa nameserver = srv-dados.ipmfl.com.
128-143.x.x.189.in-addr.arpa nameserver = ns.embratel.net.br.
128-143.x.x.189.in-addr.arpa nameserver = ns2.embratel.net.br.
ns.embratel.net.br internet address = 200.255.253.241
ns2.embratel.net.br internet address = 200.245.255.33
srv-dados.ipmfl.com internet address = 10.0.0.3

srv-dados:/var/cache/bind# dig -x 189.x.x.131

; <<>> DiG 9.5.1-P3 <<>> -x 189.x.x.131
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34334
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 3, ADDITIONAL: 3

;; QUESTION SECTION:
;131.222.2.189.in-addr.arpa. IN PTR

;; ANSWER SECTION:
131.222.2.189.in-addr.arpa. 86349 IN CNAME 131.128-143.222.2.189.in-addr.arpa.
131.128-143.x.x.189.in-addr.arpa. 604800 IN PTR srv-dados.ipmfl.com.
131.128-143.x.x.189.in-addr.arpa. 604800 IN PTR mail.ipmfl.com.

;; AUTHORITY SECTION:
128-143.x.x.189.in-addr.arpa. 604800 IN NS ns.embratel.net.br.
128-143.x.x.189.in-addr.arpa. 604800 IN NS srv-dados.ipmfl.com.
128-143.x.x.189.in-addr.arpa. 604800 IN NS ns2.embratel.net.br.

;; ADDITIONAL SECTION:
ns.embratel.net.br. 85717 IN A 200.255.253.241
ns2.embratel.net.br. 85716 IN A 200.245.255.33
srv-dados.ipmfl.com. 604800 IN A 10.0.0.3

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Wed Oct 3 10:42:20 2012
;; MSG SIZE rcvd: 234