Hi NSD user?
Hi have a problem with PTR in NSD 4.1.1 with unbound 1.5.1 on OpenBSD 5.7?
I can resolve PTR only from my LAN but not from internet?
...
From my lan:
$ nslookup 212.43.127.3 192.168.1.30
Server: 192.168.1.30
Address: 192.168.1.30#53
3.127.43.212.in-addr.arpa name = mx.muscelli.org.
...
This is from google app:
id 37433
opcode QUERY
rcode NOERROR
flags QR AA RD
;QUESTION
mx.muscelli.org. IN PTR
;ANSWER
;AUTHORITY
muscelli.org. 3600 IN SOA ns1.muscelli.org. hostmaster.muscelli.org. 2015112306
1800 7200 1209600 3600
;ADDITIONAL
...
This is my nod.conf:
server:
hide-version: yes
ip-address: 192.168.1.30 at 5353
database: "/var/nsd/db/nsd.db"
zonelistfile: "/var/nsd/db/zone.list"
username: _nsd
logfile: "/var/log/nsd"
pidfile: "/var/nsd/run/nsd.pid"
xfrdfile: "/var/nsd/run/xfrd.state"
verbosity: 5
remote-control:
control-enable: yes
control-interface: 127.0.0.1
control-port: 8952
server-key-file: "/var/nsd/etc/nsd_server.key"
server-cert-file: "/var/nsd/etc/nsd_server.pem"
control-key-file: "/var/nsd/etc/nsd_control.key"
control-cert-file: "/var/nsd/etc/nsd_control.pem"
zone:
name: "muscelli.org"
zonefile: "/var/nsd/zones/muscelli.org?
zone:
name: "127.43.212.in-addr.arpa"
zonefile: "/var/nsd/zones/127.43.212.in-addr.arpa?
...
Zone muscelli.org:
$ORIGIN muscelli.org.
$TTL 86400
@ 3600 IN SOA ns1.muscelli.org.
hostmaster.muscelli.org. (
2015112306 ; serial
1800 ; refresh
7200 ; retry
1209600 ; expire
3600 ) ; negative
IN NS ns1.muscelli.org.
IN NS ns2.muscelli.org.
IN MX 10 mx.muscelli.org.
@ IN A 212.43.127.3
muscelli.org. IN A 212.43.127.3
ns1.muscelli.org. IN A 212.43.127.3
ns2.muscelli.org. IN A 212.43.127.3
mx.muscelli.org. IN A 212.43.127.3
default._domainkey.muscelli.org. IN A 212.43.127.3
default._domainkey.muscelli.org. IN TXT ("v=DKIM1; g=*; k=rsa;
p=MIIBIjANBgkqhkiG9w0BAQEFA"
"AOCAQ8AMIIBCgKCAQEA3fCumoUPFog3w9vYFg+Hl6uXJdGtkPX+1+nexJQFuqxS7KK+qVtYS6Re49zLeW+4/Zs7lez9Mv0VC"
"EgBCqvjCC4iKKj+Q9AYOtHo9FgLjLkiQdOY9UKd9zSFfQMgJaKjhhxkMIcvfbHL6/YJ8foTNyss9O8+c4pE81eD29csejOEn"
"WaNjBxdk8B8j6T17q/ACdyRzd17nxasdGSb0oIkdI1mrm/KsStvNopTsKlHl8W9Mlmp3DnIF+IuazEbrvPgvo055lCLLzoDo"
"P1IhRPDokWWlfUb+xR2WDkhrcVPaP5wx8Vvc61eutrDHwKumoB6Ct6eDelWVUelQBQdFM5kGwIDAQAB")
muscelli.org. IN TXT "v=spf1 mx
a:mx.muscelli.org ip4:212.43.127.3 ~all"
muscelli.org. IN TXT "spf2.0/pra a mx
a:mx.muscelli.org ip4:212.43.127.3 ~all?
Zone 127.43.212.in-addr.arpa:
$ORIGIN 127.43.212.in-addr.arpa.
$TTL 86400
@ 3600 IN SOA ns1.muscelli.org.
hostmaster.muscelli.org. (
2015112306 ; serial
1800 ; refresh
7200 ; retry
1209600 ; expire
3600 ) ; negative
IN NS ns1.muscelli.org.
IN NS ns2.muscelli.org.
3 IN PTR mx.muscelli.org.
Thank you?
Gianluca D.Muscelli
<info at muscelli.org>
IMPORTANT NOTICE:
This message (including attachments) is intended only for the recipient(s) named
above and may contain confidential or privileged information.
If you are not the intended recipient, any distribution or copying of this
communication is strictly prohibited.
If you have received this in error, please contact postmaster at muscelli.org
and delete the e.mail from your system.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Message signed with OpenPGP using GPGMail
URL:
<http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20160220/e42f4338/attachment.bin>
How is network layout, i can see dat nsd is running on port 5353 is this correct? -----Oorspronkelijk bericht----- Van: nsd-users [mailto:nsd-users-bounces at NLnetLabs.nl] Namens Gianluca D.Muscelli Verzonden: zaterdag 20 februari 2016 21:40 Aan: nsd-users at NLnetLabs.nl Onderwerp: [nsd-users] PTR problem Hi NSD user... Hi have a problem with PTR in NSD 4.1.1 with unbound 1.5.1 on OpenBSD 5.7... I can resolve PTR only from my LAN but not from internet... ...>From my lan:$ nslookup 212.43.127.3 192.168.1.30 Server: 192.168.1.30 Address: 192.168.1.30#53 3.127.43.212.in-addr.arpa name = mx.muscelli.org. ... This is from google app: id 37433 opcode QUERY rcode NOERROR flags QR AA RD ;QUESTION mx.muscelli.org. IN PTR ;ANSWER ;AUTHORITY muscelli.org. 3600 IN SOA ns1.muscelli.org. hostmaster.muscelli.org. 2015112306 1800 7200 1209600 3600 ;ADDITIONAL ... This is my nod.conf: server: hide-version: yes ip-address: 192.168.1.30 at 5353 database: "/var/nsd/db/nsd.db" zonelistfile: "/var/nsd/db/zone.list" username: _nsd logfile: "/var/log/nsd" pidfile: "/var/nsd/run/nsd.pid" xfrdfile: "/var/nsd/run/xfrd.state" verbosity: 5 remote-control: control-enable: yes control-interface: 127.0.0.1 control-port: 8952 server-key-file: "/var/nsd/etc/nsd_server.key" server-cert-file: "/var/nsd/etc/nsd_server.pem" control-key-file: "/var/nsd/etc/nsd_control.key" control-cert-file: "/var/nsd/etc/nsd_control.pem" zone: name: "muscelli.org" zonefile: "/var/nsd/zones/muscelli.org" zone: name: "127.43.212.in-addr.arpa" zonefile: "/var/nsd/zones/127.43.212.in-addr.arpa" ... Zone muscelli.org: $ORIGIN muscelli.org. $TTL 86400 @ 3600 IN SOA ns1.muscelli.org. hostmaster.muscelli.org. ( 2015112306 ; serial 1800 ; refresh 7200 ; retry 1209600 ; expire 3600 ) ; negative IN NS ns1.muscelli.org. IN NS ns2.muscelli.org. IN MX 10 mx.muscelli.org. @ IN A 212.43.127.3 muscelli.org. IN A 212.43.127.3 ns1.muscelli.org. IN A 212.43.127.3 ns2.muscelli.org. IN A 212.43.127.3 mx.muscelli.org. IN A 212.43.127.3 default._domainkey.muscelli.org. IN A 212.43.127.3 default._domainkey.muscelli.org. IN TXT ("v=DKIM1; g=*; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFA" "AOCAQ8AMIIBCgKCAQEA3fCumoUPFog3w9vYFg+Hl6uXJdGtkPX+1+nexJQFuqxS7KK+qVtYS6Re49zLeW+4/Zs7lez9Mv0VC" "EgBCqvjCC4iKKj+Q9AYOtHo9FgLjLkiQdOY9UKd9zSFfQMgJaKjhhxkMIcvfbHL6/YJ8foTNyss9O8+c4pE81eD29csejOEn" "WaNjBxdk8B8j6T17q/ACdyRzd17nxasdGSb0oIkdI1mrm/KsStvNopTsKlHl8W9Mlmp3DnIF+IuazEbrvPgvo055lCLLzoDo" "P1IhRPDokWWlfUb+xR2WDkhrcVPaP5wx8Vvc61eutrDHwKumoB6Ct6eDelWVUelQBQdFM5kGwIDAQAB") muscelli.org. IN TXT "v=spf1 mx a:mx.muscelli.org ip4:212.43.127.3 ~all" muscelli.org. IN TXT "spf2.0/pra a mx a:mx.muscelli.org ip4:212.43.127.3 ~all" Zone 127.43.212.in-addr.arpa: $ORIGIN 127.43.212.in-addr.arpa. $TTL 86400 @ 3600 IN SOA ns1.muscelli.org. hostmaster.muscelli.org. ( 2015112306 ; serial 1800 ; refresh 7200 ; retry 1209600 ; expire 3600 ) ; negative IN NS ns1.muscelli.org. IN NS ns2.muscelli.org. 3 IN PTR mx.muscelli.org. Thank you... Gianluca D.Muscelli <info at muscelli.org> IMPORTANT NOTICE: This message (including attachments) is intended only for the recipient(s) named above and may contain confidential or privileged information. If you are not the intended recipient, any distribution or copying of this communication is strictly prohibited. If you have received this in error, please contact postmaster at muscelli.org and delete the e.mail from your system.
On Sat Feb 20 21:39:48 2016, Gianluca D.Muscelli wrote:> ip-address: 192.168.1.30 at 5353Your nsd is running on a non-routable IP, so it?s logical to be reachable only from LAN. -- alarig -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 473 bytes Desc: Digital signature URL: <http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20160220/d2427eed/attachment.bin>