Solved

reverse lookup in bind_8.1.2

Posted on 1998-07-16
3
210 Views
Last Modified: 2013-12-23
I want to eliminate the possibility of receiving the name of a host after querying the ip address from my dns.
How do i do it ?
0
Comment
Question by:sboaz
3 Comments
 
LVL 2

Expert Comment

by:blowfish
ID: 1583018
Could you try providing more detail?  Are you the DNS admin for the domains you are trying to restrict?  Are you trying to prevent your own users from getting this information, or are you trying to prevent Internet users.  Could you give us a scenario or two.  I can probably answer this, but I'm not sure who you're trying to restrict.  
0
 

Author Comment

by:sboaz
ID: 1583019
i am the  domain manager, i don"t want to give the internet users the possibility to extract a computer name from a query on an IP  address.
i  tried two ways
1. according to documents if my options block does not include "fake-iquery yes" than the inverse query is disabled.
I have no such option and therefore I assume that inverse query is disabled. However, after I queried an IP address to my amazement i received the computer name.

2. I deleted most of the reverse lookup db records and of course disabled the inverse query option. However, this is not a satisfactory solution.
I am looking for a more sofisticated solution.

Any help in the above matter would be greatly appreciated (and of course there are the 100 points at stake !!)


0
 
LVL 1

Accepted Solution

by:
mohammedg earned 100 total points
ID: 1583020
Two ways I can think of doing this:

1. Eazy Way: is to have two DNS servers one is a Primary for your domain, and the other is a secondary. The secondary server is the one that will be queried by the outside world (NOT THE PRIMARY), your primary will be used internaly only.
So all the secondary has to do is get the zones it needs, (i.e. it should not get the reverse lookup zone from the primary).

2. Hard Way: is of course to construct a firewall, and stop incoming DNS queries to your network, by disabling packets on port #157 (Check the port number) . But this will stop all kind of DNS request into your domain, and only allow requests to go out.

0

Featured Post

New My Cloud Pro Series - organize everything!

With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Two of my three WiFi Routers lose connection 6 55
How computer Arp Table gets populated. 21 87
Cisco universal IOS upgrade from ipbase to ipservices 4 66
VIRTUAL NETWORKING 3 38
Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now