Solved

Reverse DNS delegation from ATT

Posted on 2014-03-06
5
380 Views
Last Modified: 2014-03-14
I already have this working, but I'm hoping someone can help me to understand why. One of the services my company provides to our clients is DNS hosting, including rDNS if they can get their IPs delegated to us.

In the past I've always set up our rDNS zones using a / instead of a - as I understood that was proper CIDR notation for classless subnets.

For example, if ATT delegated this block to us:  12.171.xxx.yyy/29
Then we would set up the zone on our DNS server like this: yyy/29.xxx.171.12.in-addr.arpa

For some reason this absolutely wouldn't work on the most recent delegation, so after banging my head on the wall for a while I replaced the slash with a dash and this started working:

yyy-29.xxx.171.12.in-addr.arpa

We have dozens of other delegations from ATT that worked with the / so I have no idea why this one suddenly started needing a - instead.

If it matters, we're using SimpleDNS Plus 5.1.

Thanks for reading!
0
Comment
Question by:sfcanderson
5 Comments
 
LVL 57

Expert Comment

by:giltjr
ID: 39912311
Did you do any packet captures or enable logging (if any) in SimpleDNS to see what was going on?

The way I'm reading the doc for SimpleDNS it implies that what you had should work and as you stated, you had this working before.

http://www.simpledns.com/help/v51/index.html?rec_ptr.htm
0
 
LVL 28

Expert Comment

by:mikebernhardt
ID: 39913164
2 thoughts:
1. Are you absolutely certain that there wasn't a typo in the first one?
2. How exactly are you determining whether it works or not? Is the zone not loading? Is it possible that the client side is old and doesn't recognize the / formatting?
0
 

Author Comment

by:sfcanderson
ID: 39913348
1. I'm as certain as I can be that there weren't any typos. Another engineer created it first and I looked it over with him. We didn't see any problems, but we each deleted and recreated the zone three more times over a couple of days and confirmed we were entering it correctly.

2. We ended up testing with a LOT of different methods:

Dig and nslookup on our workstations.
mxtoolbox.com, simpledns.com, dnsstuff.com, and several other websites for testing externally.

Another thing that may or may not have been useful was that I tried creating a zone using only the single IP that we needed a PTR for. It ended up looking like this:

yyz.xxx.171.12.in-addr.arpa

If I queried my nameservers directly for that IP then it would respond with the PTR, but if  we used the normal resolution methods going through root servers then it would not. This may have been by design as a DNS trace would show ATT handing off the CNAME yyy/29.xxx.171.12.in-addr.arpa to requests, but since we didn't have the full scope configured I think our DNS server was dropping them.
0
 
LVL 27

Accepted Solution

by:
Steve earned 500 total points
ID: 39920702
Like many things on the internet, DNS has had various 'official' standards and many interpretations of that standard.
While both of the options you have stated may have worked on some systems, the introduction of IPV6 & the new DNS standards (more TLDs, non-English characters etc) has necessitated some systems tightening up to meet more specific standards.

You may never find out why is stopped working, but you may also struggle to find anyone confirming it is should have worked in the first place, as it wasn't 'officially' accepted to use the slash in the first place I don't think.

http://dyn.com/support/reverse-dns/

http://en.wikipedia.org/wiki/Hostname
0
 

Author Closing Comment

by:sfcanderson
ID: 39929935
I'm going to go with "we'll never know why," but thanks for trying!
0

Featured Post

3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to create SPF records 3 38
Can Cisco resolve internet address internally 4 31
DNS and NSLOOKUP 21 56
Public DNS? 10 52
This article explains how a domain name may be inadvertently appended to all DNS queries. This exhibits as described below. (CODE)And / Or: (CODE) Cause This issue can occur in either of these two scenarios. EITHER 1. A Primary DNS S…
I will assume you are running a non-server version of some sort of Windows throughout this article. There are many flavors of Windows since Windows Server 2000 - 2008, XP Home & Pro, Vista Home & Pro, and Windows 7 Starter, Home, Pro, Ultimate, etc.…
In this video I am going to show you how to back up and restore Office 365 mailboxes using CodeTwo Backup for Office 365. Learn more about the tool used in this video here: http://www.codetwo.com/backup-for-office-365/ (http://www.codetwo.com/ba…
Video by: Mark
This lesson goes over how to construct ordered and unordered lists and how to create hyperlinks.

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now