[CLUE-Tech] host -l and subdomains, reverse DNS
Keith Christian
keithchristian at yahoo.com
Fri Aug 8 09:56:25 MDT 2003
Hi Kevin,
Thanks for the help.
Omitting the "-l" argument works:
09:56:22 ~>host keithchristian.net
09:56:25 ~>host www.keithchristian.net
www.keithchristian.net has address 192.168.1.153
09:56:34 ~>host linuxdev03.keithchristian.net
linuxdev03.keithchristian.net has address 192.168.1.153
DIG works:
09:56:44 ~>dig keithchristian.net
; <<>> DiG 9.2.1 <<>> keithchristian.net
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11900
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;keithchristian.net. IN A
;; AUTHORITY SECTION:
keithchristian.net. 86400 IN SOA ns.keithchristian.net.
hostmaster.keithchristian.net. 200308071 10800 900 604800 86400
;; Query time: 442 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Fri Aug 8 09:56:52 2003
;; MSG SIZE rcvd: 86
The thing still failing is the reverse zone, neither "host 192.168.1.153" nor
"dig 192.168.1.153" succeeds:
09:57:08 ~>dig 192.168.1.153
; <<>> DiG 9.2.1 <<>> 192.168.1.153
;; global options: printcmd
;; connection timed out; no servers could be reached
09:57:30 ~>host 192.168.1.153
Host 153.1.168.192.in-addr.arpa not found: 3(NXDOMAIN)
DIG says "no servers could be reached" but DIG ran successfully in the same
session a minute or two before.
I have checked the reverse zone file and it looks OK. (I'm using examples
from the RHCE certification book.)
Wierd. I'm not thinking about this properly yet I suppose.
=====Keith
--- Kevin Fenzi <kevin at scrye.com>, Kevin Fenzi <kevin at scrye.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> >>>>> "Keith" == Keith Christian <keithchristian at yahoo.com> writes:
>
> Keith> Hi Folks, I have a couple of DNS questions.
>
> Keith> After configuring DNS on a small 2 station 'network' everything
> Keith> seems to be working except for two things.
>
> Keith> 1. "host -l keithchristan.net" finds the primary domain and all
> Keith> the subdomains with no problem:
>
> Keith> 10:40:50 /var/named>host -l keithchristian.net
> Keith> keithchristian.net SOA ns.keithchristian.net.
> Keith> hostmaster.keithchristian.net. 200308071 10800 900 604800 86400
> Keith> keithchristian.net name server ns.keithchristian.net.
> Keith> keithchristian.net mail is handled by 10
> Keith> mail.keithchristian.net. keithchristian.net mail is handled by
> Keith> 20 mail2.keithchristian.net. keithchristian.net mail is
> Keith> handled by 30 mail3.keithchristian.net. keithchristian.net
> Keith> mail is handled by 40 mail4.keithchristian.net.
> Keith> alpha.keithchristian.net has address 192.168.1.153
> Keith> bravo.keithchristian.net has address 192.168.1.153
> Keith> charlie.keithchristian.net has address 192.168.1.153
> Keith> delta.keithchristian.net has address 192.168.1.153
> Keith> ftp.keithchristian.net is an alias for www.keithchristian.net.
> Keith> localhost.keithchristian.net has address 127.0.0.1
> Keith> news.keithchristian.net is an alias for www.keithchristian.net.
> Keith> ns.keithchristian.net has address 127.0.0.1
> Keith> www.keithchristian.net has address 192.168.1.153
> Keith> keithchristian.net SOA ns.keithchristian.net.
> Keith> hostmaster.keithchristian.net. 200308071 10800 900 604800 86400
>
> Keith> .....Why can't "host -l" find a subdomain, say,
> Keith> "www.keithchristian.net?" I tried DIG and it finds them.
>
> Keith> 10:40:56 /var/named>host -l www.keithchristian.net
>
> Keith> Host www.keithchristian.net not found: 9(NOTAUTH)
>
> Keith> ; Transfer failed.
>
> host -l is not what you want probibly. From the host manpage:
>
> List mode is selected by the -l option. This makes host perform a
> zone
> transfer for zone name. The argument is provided for compatibility
> with
> older implemementations. This option is equivalent to making a query
> of
> type AXFR.
>
> So, when you use -l you are asking for the entire dns zone.
> There isn't a www.keithchristian.net domain name, just a host.
> Also, the NOTAUTH indicates that you were not allowed to transfer that
> zone.
>
> For hostnames you just want to use host with no flags, ie:
>
> host www.keithchristian.net
>
> Keith> 2. After configuring the "reverse zone" I expect to be able to
> Keith> get the hostname for an IP address using "host -l" like so:
>
> again you don't want to transfer the entire zone when you just want
> one hostname back.
>
> Keith> 10:41:01 /var/named>host -l 192.168.1.153
>
> Keith> Host 153.1.168.192.in-addr.arpa not found: 3(NXDOMAIN)
>
> Keith> The /var/log/messages file doesn't indicate any problems (at
> Keith> least superficially) with the configuration.
>
> Yeah, you want host without -l again there.
>
> Keith> ====Keith
>
> kevin
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.2 (GNU/Linux)
> Comment: Processed by Mailcrypt 3.5.8 <http://mailcrypt.sourceforge.net/>
>
> iD8DBQE/MqK83imCezTjY0ERAn7KAKCXSBGboBWz1bwdKMSZZYHDkamJ/gCglKkG
> jmtiuH0o+DNRZwvfw4obDms=
> =053f
> -----END PGP SIGNATURE-----
> _______________________________________________
> CLUE-Tech mailing list
> Post messages to: CLUE-Tech at clue.denver.co.us
> Unsubscribe or manage your options:
http://clue.denver.co.us/mailman/listinfo/clue-tech
__________________________________
Do you Yahoo!?
Yahoo! Calendar - Free online calendar with sync to Outlook(TM).
http://calendar.yahoo.com
More information about the clue-tech
mailing list