[AusNOG] Reverse DNS Recommendations

Beeson, Ayden ABeeson at csu.edu.au
Thu Dec 4 15:58:27 EST 2014


I think Jacob is more referring to what to put for the reverse PTR's for devices that don't have clear single IP A/AAAA/PTR records, such as routers, vlans etc.

What we have done here (or are doing, it's still in flux so I'm open to ANY other better suggestions) is to base the PTR on the IP / subnet it is serving.

We have a single /16 IPv4 which for the most part is divided into /24's, so we are planning to basically reflect the IP directly.

I.e. for 137.166.140.254 (the router for my subnet) we will call it gw-140 and insert relevant A and PTR records for this, for those with HSRP etc you can add -a / -b etc as well.

I have adapted this for IPv6 as well for our /32, so for example 2405:2d00:301:2000::1 (my router again) becomes gw-301-2000

It's not perfect, but at least it's predictable and repeatable. For the more specific subnets such as P2P /30, /31, /126 or /127's I haven't come up with a solid plan yet other than to scale this out to a longer name, or potentially go with a more descriptive name.

It also wouldn't work if you had a whole bunch of separate network ranges, at least not in a small and easy fashion.

Thanks,
Ayden Beeson

-----Original Message-----
From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Daniel
Sent: Thursday, 4 December 2014 3:37 PM
To: 'Jacob Kino'; AusNOG at lists.ausnog.net
Subject: Re: [AusNOG] Reverse DNS Recommendations

Not sure if it helps or not, but we recently went through the same process

How we tackled it, was we setup 4 VM's around the country, all on separate subnets, aka for example of the following

10.1.1.251
10.1.2.251
10.1.3.251
10.1.4.251

Which is RFC complient

We used powerdns/poweradmin to control all of this

Hope this helps in a round about way :D


D.

-----Original Message-----
From: AusNOG [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Jacob Kino
Sent: Thursday, 4 December 2014 3:28 PM
To: AusNOG at lists.ausnog.net
Subject: [AusNOG] Reverse DNS Recommendations

Hi All,

We're in the process of doing some spring cleaning around our network and looking to implement more consistent and meaningful reverse DNS.

I had a look back through the archives and didn't find anything useful in terms of either an RFC (wouldn't have really expected one) or references to guidelines/a standard.

We've performed some analysis on what others do, but due to the design of our network there are some cases where we aren't quite sure what's most appropriate.

Specifically, VLANs seem to present a bit of a challenge as well as links between virtualized firewall instances. I'm trying to come up with a conceptual framework that makes general sense so we can develop something from that, if such a thing exists.

If anyone has tackled this issue and has guidance they can share, that would be excellent - happy for on-list and off-list replies.

Cheers,

Jacob | Interconnekt


_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net
http://lists.ausnog.net/mailman/listinfo/ausnog

_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net
http://lists.ausnog.net/mailman/listinfo/ausnog
Charles Sturt University

| ALBURY-WODONGA | BATHURST | CANBERRA | DUBBO | GOULBURN | MELBOURNE | ONTARIO | ORANGE | PORT MACQUARIE | SYDNEY | WAGGA WAGGA |

LEGAL NOTICE
This email (and any attachment) is confidential and is intended for the use of the addressee(s) only. If you are not the intended recipient of this email, you must not copy, distribute, take any action in reliance on it or disclose it to anyone. Any confidentiality is not waived or lost by reason of mistaken delivery. Email should be checked for viruses and defects before opening. Charles Sturt University (CSU) does not accept liability for viruses or any consequence which arise as a result of this email transmission. Email communications with CSU may be subject to automated email filtering, which could result in the delay or deletion of a legitimate email before it is read at CSU. The views expressed in this email are not necessarily those of CSU.

Charles Sturt University in Australia  http://www.csu.edu.au  The Grange Chancellery, Panorama Avenue, Bathurst NSW Australia 2795  (ABN: 83 878 708 551; CRICOS Provider Numbers: 00005F (NSW), 01947G (VIC), 02960B (ACT)). TEQSA Provider Number: PV12018

Charles Sturt University in Ontario  http://www.charlessturt.ca 860 Harrington Court, Burlington Ontario Canada L7N 3N4  Registration: www.peqab.ca

Consider the environment before printing this email.


More information about the AusNOG mailing list