Ken.Hendrickson at L3Harris.com
2020-Jul-09 17:44 UTC
[nsd-users] Unbound Problems (Reverse Direction)
Nope. I still don't have it working. NSD is working in both directions. Unbound is only working in the forward direction. Here is proof that both Unbound and NSD are working in the forward direction: ------------------------------------------------------------------------ 7 Soekris2# nslookup nas2 Server: 127.0.0.1 Address: 127.0.0.1#53 Non-authoritative answer: Name: nas2.Foo.Bar Address: 172.24.10.2 ------------------------------------------------------------------------ Here is proof that NSD is working in the reverse direction: ------------------------------------------------------------------------ 8 Soekris2# nslookup> server 127.0.0.1Default server: 127.0.0.1 Address: 127.0.0.1#53> set port=53053 > 172.24.10.2Server: 127.0.0.1 Address: 127.0.0.1#53053 2.10.24.172.in-addr.arpa name = nas2.foo.bar. ------------------------------------------------------------------------ But somehow, Unbound is not working in the reverse direction: ------------------------------------------------------------------------ 6 Soekris2# nslookup 172.24.10.2 Server: 127.0.0.1 Address: 127.0.0.1#53 ** server can't find 2.10.24.172.in-addr.arpa: NXDOMAIN ------------------------------------------------------------------------ Here is the relevant part of my unbound.conf: ------------------------------------------------------------------------ # Use nsd to resolve local names. # Do not send these queries to the root servers. stub-zone: name: Foo.Bar. stub-addr: 127.0.0.1 at 53053 stub-zone: name: 10.24.172.in-addr.arpa. stub-addr: 127.0.0.1 at 53053 stub-zone: name: 20.24.172.in-addr.arpa. stub-addr: 127.0.0.1 at 53053 stub-zone: name: 30.24.172.in-addr.arpa. stub-addr: 127.0.0.1 at 53053 stub-zone: name: 2.168.192.in-arpa.arpa. stub-addr: 127.0.0.1 at 53053 stub-zone: name: 224.in-addr.arpa. stub-addr: 127.0.0.1 at 53053 stub-zone: name: 255.in-addr.arpa. stub-addr: 127.0.0.1 at 53053 ------------------------------------------------------------------------ Any ideas? What am I still doing wrong?? NSD is listening on port 53053, and works (as proved above) for resolving in the reverse direction. Why doesn't unbound work? CONFIDENTIALITY NOTICE: This email and any attachments are for the sole use of the intended recipient and may contain material that is proprietary, confidential, privileged or otherwise legally protected or restricted under applicable government laws. Any review, disclosure, distributing or other use without expressed permission of the sender is strictly prohibited. If you are not the intended recipient, please contact the sender and delete all copies without reading, printing, or saving.