Purpose of in-addr.arpa within Server 2016 DNS

What is the purpose of in-addr.arpa within Server 2016 DNS?

IT GuyNetwork EngineerAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

nociSoftware EngineerCommented:
in-addr.arpa is reseved for reverse lookup of names with IPv4 addresses...

If you want to know the name of a system say then you need to query the dns for   the record type is PTR.
dig -x
dig -x
dig -x
dig PTR

Open in new window


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Jose Gabriel Ortega CastroCEOCommented:
There are 2 kinds of Zones in a DNS.

Direct zones.... (From NAME to IP)
It's the way internet goes, like :   www.google.com => x.x.x.x (Ipv4 or Ipv6)
You can verify this by doing: ping www.google.com and receiving and responses

And Inverse Zones.... (From IP to NAME)
Example:  => should be dns1 from google , -> google-public-dns-a.google.com
You can verify this by doing: ping /a and getting google-public-dns-a.google.com
Basically what you're seeing is the Inverse zone of your internal infrastructure.
It's usually not in use at least you have a big network.
nociSoftware EngineerCommented:
Reverse addresses are used by several servces ostly for loggin puposes to log a name with an IP address.
Also e-mail services mostly require correctly setup systems, with reverse lookup to get spammers to run all hoops and not have shoddy setups.
(For many reverse IP's you need the cooperation from your ISP. so that reduces a lot of spam...)
Acronis True Image 2019 just released!

Create a reliable backup. Make sure you always have dependable copies of your data so you can restore your entire system or individual files.

I am literally looking at reverse DNS entries right now to identify traffic going through my firewall. My local reverse lookup zones helps my know what device is Unfortunately, many cloud based reverse lookup zones don't give you very useful information. Look at these results:

Server:  google-public-dns-a.google.com

Name:    a23-9-32-36.deploy.static.akamaitechnologies.com

Would you have any idea that is the server for www.sophos.com?

Non-authoritative answer:
Server:  google-public-dns-a.google.com

Name:    e6203.b.akamaiedge.net
Aliases:  www.sophos.com


nociSoftware EngineerCommented:
Correct as those systems don't run for one service but many thousands (easily).  The answers would typically not fit in a DNS answer.

You should see more consistent results with mailserver DNS, except with live.com / hotmail.com / Office365.com etc.
there forward & reverse lookup don't always match the reported & actual hostname (from HELO/EHLO) . live.com server posing as hotmail etc.
that SHOULD NOT happen with mail services.
(that is also the case with their certificates not matching domains/hostnames etc.).
Main point of unif reverse is to avoid unnecessary delays to lookup private ip space
One should commonly add the private ip spaces.
date ; nslookup; date
date ; nslookup ; date
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2016

From novice to tech pro — start learning today.