Hurricane Electric's IPv6 Tunnel Broker Forums

Tunnelbroker.net Specific Topics => Questions & Answers => Topic started by: sheppard on March 14, 2010, 03:18:01 PM

Title: /64 rnds help
Post by: sheppard on March 14, 2010, 03:18:01 PM
Hi, i've recently setup the tunnel and added my nameservers to the site here.. and i'm not sure what i'm doing wrong, but i still cannot figure out why i'm not getting reverse dns on my block... this is my setup, if maybe a bit of help?

named.conf
zone "ipv6-rev" { type master; file "/etc/namedb/master/ipv6-reverse.db"; };

ipv6-reverse.db
;2001:470:1f07:10f/64
$ORIGIN f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa.
$TTL 3600

@     IN      SOA       ns1.whipcream.net. admin.whipcream.net. (
                        2010031363      ; serial number YYMMDDNN
                        1200            ; Refresh
                        900             ; Retry
                        864000          ; Expire
                        3600            ; Min TTL
                        )

                        NS      ns1.whipcream.net.
                        NS      ns2.whipcream.net.

$ORIGIN 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa.

1                       PTR     ipv6.whipcream.net.
2                       PTR     box.industry9.com.
3                       PTR     ipv6.industry9.com.

and i know the forward is working, because i can resolve ipv6.whipcream.net i'm not sure whats going on!@# ahh
Title: Re: /64 rnds help
Post by: mikea on March 14, 2010, 04:45:44 PM
Did you verify that the reverse zone loaded correctly? Could be a hint as to what is wrong in the log if it didn't load correctly.
Title: Re: /64 rnds help
Post by: cholzhauer on March 14, 2010, 04:51:59 PM
Does it work internally?
Title: Re: /64 rnds help
Post by: sheppard on March 14, 2010, 05:02:21 PM
it's loading... doesn't work internally though

this is the error i get when i run checkzone on it..

ipv6-reverse.db:4: ignoring out-of-zone data (f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
ipv6-reverse.db:17: ignoring out-of-zone data (1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
ipv6-reverse.db:18: ignoring out-of-zone data (2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
ipv6-reverse.db:19: ignoring out-of-zone data (3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
zone ipv6-reverse.db/IN: has 0 SOA records
zone ipv6-reverse.db/IN: has no NS records
Title: Re: /64 rnds help
Post by: sheppard on March 14, 2010, 05:06:10 PM
sorry my bad, it didn't load ;(
Title: Re: /64 rnds help
Post by: mikea on March 14, 2010, 05:06:49 PM
Try taking out /commenting out the first line:
  $ORIGIN f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa.

Try replacing your SOA line with:
@   IN SOA f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa. ns1.whipcream.net. admin.whipcream.net. (
Title: Re: /64 rnds help
Post by: sheppard on March 14, 2010, 05:10:14 PM
heres the reply to named-checkzone, even after the change.

zone localhost/IN: NS 'localhost' has no address records (A or AAAA)
zone localhost/IN: loaded serial 2010031410
zone 0.0.127.in-addr.arpa/IN: loaded serial 2010031314
/etc/namedb/master/ipv6-reverse.db:1: unknown RR type '$ORIGIN'
dns_rdata_fromtext: /etc/namedb/master/ipv6-reverse.db:5: near 'admin.whipcream.net.': not a valid number
/etc/namedb/master/ipv6-reverse.db:6: unknown RR type '@'
/etc/namedb/master/ipv6-reverse.db:19: ignoring out-of-zone data (1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
/etc/namedb/master/ipv6-reverse.db:20: ignoring out-of-zone data (2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
/etc/namedb/master/ipv6-reverse.db:21: ignoring out-of-zone data (3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
zone ipv6-rev/IN: loading from master file /etc/namedb/master/ipv6-reverse.db failed: unknown class/type
_default/ipv6-rev/IN: unknown class/type

Title: Re: /64 rnds help
Post by: mikea on March 14, 2010, 05:13:51 PM
Try changing your $ORIGIN line to:

$ORIGIN f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa.

And adjust your PTR entries to include the trailing zeroes.

ie.

1.0.0.0.0.0.0.0.0.0.0.0.0.0.0  PTR     ipv6.whipcream.net.
Title: Re: /64 rnds help
Post by: mikea on March 14, 2010, 05:20:39 PM
Also in your named.conf try referencing your zone as:

zone "f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa" { type master; file "/etc/namedb/master/ipv6-reverse.db"; };
Title: Re: /64 rnds help
Post by: sheppard on March 14, 2010, 05:20:57 PM
ok, starting look a bit better... this is what i have now, and it atleast loads the zone...

ipv6-reverse.db
$TTL 3600

@      IN      SOA      f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa. admin.whipcream.net. (
                        2010031368      ; serial number YYMMDDNN
                        1200            ; Refresh
                        900             ; Retry
                        864000          ; Expire
                        3600            ; Min TTL
                        )

                        NS      ns1.whipcream.net.
                        NS      ns2.whipcream.net.

$ORIGIN f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa.

1.0.0.0.0.0.0.0.0.0.0.0.0.0.0  PTR     ipv6.whipcream.net.
2.0.0.0.0.0.0.0.0.0.0.0.0.0.0  PTR     box.industry9.com.
3.0.0.0.0.0.0.0.0.0.0.0.0.0.0  PTR     ipv6.industry9.com.


named-checkzone output:

one localhost/IN: NS 'localhost' has no address records (A or AAAA)
zone localhost/IN: loaded serial 2010031410
zone 0.0.127.in-addr.arpa/IN: loaded serial 2010031314
/etc/namedb/master/ipv6-reverse.db:16: ignoring out-of-zone data (1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
/etc/namedb/master/ipv6-reverse.db:17: ignoring out-of-zone data (2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
/etc/namedb/master/ipv6-reverse.db:18: ignoring out-of-zone data (3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
zone ipv6-rev/IN: loaded serial 2010031368


loaded at least, just dunno about the out of zone data error ;(
Title: Re: /64 rnds help
Post by: sheppard on March 14, 2010, 05:22:44 PM
ok i just changed the named.conf

zone "f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa" { type master; file "/etc/namedb/master/ipv6-reverse.db"; };

and now i'm not getting any errors from named-checkzone
Title: Re: /64 rnds help
Post by: sheppard on March 14, 2010, 05:23:54 PM
named-checkzone gives me an error though

ipv6-reverse.db:16: ignoring out-of-zone data (1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
ipv6-reverse.db:17: ignoring out-of-zone data (2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
ipv6-reverse.db:18: ignoring out-of-zone data (3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
Title: Re: /64 rnds help
Post by: broquea on March 14, 2010, 05:37:57 PM
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa

versus

1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa

missing a 0, break it out into quads to make sure you've counted the right amount:

1.0.0.0  0.0.0.0  0.0.0.0  0.0.0.0  f.0.1.0  7.0.f.1  0.7.4.0  1.0.0.2
Title: Re: /64 rnds help
Post by: sheppard on March 14, 2010, 05:49:39 PM
well i did make the change, and still same thing ;(  this is my current ipv6-reverse.db

$TTL 3600

@      IN      SOA      f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa. admin.whipcream.net. (
                        2010031373      ; serial number YYMMDDNN
                        1200            ; Refresh
                        900             ; Retry
                        864000          ; Expire
                        3600            ; Min TTL
                        )

                        NS      ns1.whipcream.net.
                        NS      ns2.whipcream.net.

$ORIGIN f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa.

1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0  PTR     ipv6.whipcream.net.
2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0  PTR     box.industry9.com.
3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0  PTR     ipv6.industry9.com.


and error:

ipv6-reverse.db:17: ignoring out-of-zone data (1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
ipv6-reverse.db:18: ignoring out-of-zone data (2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)
ipv6-reverse.db:19: ignoring out-of-zone data (3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.f.0.1.0.7.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa)

Title: Re: /64 rnds help
Post by: sheppard on March 14, 2010, 06:08:43 PM
wooo... now reverse dns is working, though thoes errors still show up :9... thanks for the help guys, much appreciated
Title: Re: /64 rnds help
Post by: broquea on March 14, 2010, 10:45:28 PM
Also when in doubt, oldie but goody: http://www.fpsn.net/index.cgi?pg=tools&tool=ipv6-inaddr