[CLUE-Tech] host -l and subdomains, reverse DNS

Keith Christian keithchristian at yahoo.com
Fri Aug 8 09:56:25 MDT 2003 

Hi Kevin,

Thanks for the help.

Omitting the "-l" argument works:
  09:56:22 ~>host keithchristian.net

  09:56:25 ~>host www.keithchristian.net
  www.keithchristian.net has address 192.168.1.153

  09:56:34 ~>host linuxdev03.keithchristian.net
  linuxdev03.keithchristian.net has address 192.168.1.153


DIG works:
  09:56:44 ~>dig keithchristian.net
  
  ; <<>> DiG 9.2.1 <<>> keithchristian.net
  ;; global options:  printcmd
  ;; Got answer:
  ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11900
  ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
  
  ;; QUESTION SECTION:
  ;keithchristian.net.            IN      A
  
  ;; AUTHORITY SECTION:
  keithchristian.net.     86400   IN      SOA     ns.keithchristian.net.
hostmaster.keithchristian.net. 200308071 10800 900 604800 86400
  
  ;; Query time: 442 msec
  ;; SERVER: 127.0.0.1#53(127.0.0.1)
  ;; WHEN: Fri Aug  8 09:56:52 2003
  ;; MSG SIZE  rcvd: 86


The thing still failing is the reverse zone, neither "host 192.168.1.153" nor
"dig 192.168.1.153" succeeds:

  09:57:08 ~>dig 192.168.1.153
  
  ; <<>> DiG 9.2.1 <<>> 192.168.1.153
  ;; global options:  printcmd
  ;; connection timed out; no servers could be reached
  09:57:30 ~>host 192.168.1.153
  Host 153.1.168.192.in-addr.arpa not found: 3(NXDOMAIN)

DIG says "no servers could be reached" but DIG ran successfully in the same
session a minute or two before.

I have checked the reverse zone file and it looks OK.  (I'm using examples
from the RHCE certification book.)

Wierd.  I'm not thinking about this properly yet I suppose.

=====Keith




--- Kevin Fenzi <kevin at scrye.com>, Kevin Fenzi <kevin at scrye.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> >>>>> "Keith" == Keith Christian <keithchristian at yahoo.com> writes:
> 
> Keith> Hi Folks, I have a couple of DNS questions.
> 
> Keith> After configuring DNS on a small 2 station 'network' everything
> Keith> seems to be working except for two things.
> 
> Keith> 1. "host -l keithchristan.net" finds the primary domain and all
> Keith> the subdomains with no problem:
> 
> Keith> 10:40:50 /var/named>host -l keithchristian.net
> Keith> keithchristian.net SOA ns.keithchristian.net.
> Keith> hostmaster.keithchristian.net. 200308071 10800 900 604800 86400
> Keith> keithchristian.net name server ns.keithchristian.net.
> Keith> keithchristian.net mail is handled by 10
> Keith> mail.keithchristian.net.  keithchristian.net mail is handled by
> Keith> 20 mail2.keithchristian.net.  keithchristian.net mail is
> Keith> handled by 30 mail3.keithchristian.net.  keithchristian.net
> Keith> mail is handled by 40 mail4.keithchristian.net.
> Keith> alpha.keithchristian.net has address 192.168.1.153
> Keith> bravo.keithchristian.net has address 192.168.1.153
> Keith> charlie.keithchristian.net has address 192.168.1.153
> Keith> delta.keithchristian.net has address 192.168.1.153
> Keith> ftp.keithchristian.net is an alias for www.keithchristian.net.
> Keith> localhost.keithchristian.net has address 127.0.0.1
> Keith> news.keithchristian.net is an alias for www.keithchristian.net.
> Keith> ns.keithchristian.net has address 127.0.0.1
> Keith> www.keithchristian.net has address 192.168.1.153
> Keith> keithchristian.net SOA ns.keithchristian.net.
> Keith> hostmaster.keithchristian.net. 200308071 10800 900 604800 86400
> 
> Keith> .....Why can't "host -l" find a subdomain, say,
> Keith> "www.keithchristian.net?"  I tried DIG and it finds them.
> 
> Keith> 10:40:56 /var/named>host -l www.keithchristian.net
> 
> Keith>     Host www.keithchristian.net not found: 9(NOTAUTH)
>     
> Keith>     ; Transfer failed.
> 
> host -l is not what you want probibly. From the host manpage: 
> 
>        List  mode is selected by the -l option. This makes host perform a
> zone
>        transfer for zone name. The argument is provided for compatibility
> with
>        older implemementations. This option is equivalent to making a query
> of
>        type AXFR.
> 
> So, when you use -l you are asking for the entire dns zone. 
> There isn't a www.keithchristian.net domain name, just a host. 
> Also, the NOTAUTH indicates that you were not allowed to transfer that
> zone. 
> 
> For hostnames you just want to use host with no flags, ie:
> 
> host www.keithchristian.net
> 
> Keith> 2. After configuring the "reverse zone" I expect to be able to
> Keith> get the hostname for an IP address using "host -l" like so:
> 
> again you don't want to transfer the entire zone when you just want
> one hostname back. 
> 
> Keith> 10:41:01 /var/named>host -l 192.168.1.153
> 
> Keith>     Host 153.1.168.192.in-addr.arpa not found: 3(NXDOMAIN)
> 
> Keith> The /var/log/messages file doesn't indicate any problems (at
> Keith> least superficially) with the configuration.
> 
> Yeah, you want host without -l again there. 
> 
> Keith> ====Keith
> 
> kevin
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.2 (GNU/Linux)
> Comment: Processed by Mailcrypt 3.5.8 <http://mailcrypt.sourceforge.net/>
> 
> iD8DBQE/MqK83imCezTjY0ERAn7KAKCXSBGboBWz1bwdKMSZZYHDkamJ/gCglKkG
> jmtiuH0o+DNRZwvfw4obDms=
> =053f
> -----END PGP SIGNATURE-----
> _______________________________________________
> CLUE-Tech mailing list
> Post messages to: CLUE-Tech at clue.denver.co.us
> Unsubscribe or manage your options:
http://clue.denver.co.us/mailman/listinfo/clue-tech


__________________________________
Do you Yahoo!?
Yahoo! Calendar - Free online calendar with sync to Outlook(TM).
http://calendar.yahoo.com

More information about the clue-tech mailing list