• Welcome to Hurricane Electric's IPv6 Tunnel Broker Forums.

News:

Welcome to Hurricane Electric's Tunnelbroker.net forums!

Main Menu

Professional Step

Started by andelind, April 01, 2010, 11:24:17 AM

Previous topic - Next topic

andelind

I am having trouble getting pasted the Professional stage.
When I click on the -> button, it says "Your MX does not appear to have working RDNS"

I ran these commands.

dig mx dalan.pro +short
10 mail.dalan.pro.

dig aaaa mail.dalan.pro +short
2001:470:1f05:a1d::51

dig aaaa dalan.pro +short
2001:470:1f05:a1d::51

dig -x 2001:470:1f05:a1d::51 +short
mail.dalan.pro.

I seem to be stuck, can any one point me in the right direction?

cholzhauer


[carl@mars ~]$ dig mx dalan.pro +short
10 mail.dalan.pro.
[carl@mars ~]$ dig aaaa mail.dalan.pro +short
2001:470:1f05:a1d::51
[carl@mars ~]$ dig -x 2001:470:1f05:a1d::51 +short
[carl@mars ~]$


Your MX doesn't have RDNS.

If you've set it up, it still might have to replicate the changes...or, it's possible there's a glitch with HE.

I assume you've told HE to point all reverse lookups at your DNS server, and have configured your firewall to allow those lookups?

kriteknetworks

dig ns d.1.a.0.5.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa

; <<>> DiG 9.7.0-P1 <<>> ns d.1.a.0.5.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8415
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;d.1.a.0.5.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa. IN NS

;; AUTHORITY SECTION:
5.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa. 10800 IN SOA  ns1.he.net. hostmaster.he.net. 2010040102 10800 1800 604800 86400

;; Query time: 141 msec
;; SERVER: 192.168.20.2#53(192.168.20.2)
;; WHEN: Thu Apr  1 15:52:11 2010
;; MSG SIZE  rcvd: 115


I don't see delegation for your ROUTED /64.....

andelind

Quote from: cholzhauer on April 01, 2010, 11:26:42 AM

[carl@mars ~]$ dig mx dalan.pro +short
10 mail.dalan.pro.
[carl@mars ~]$ dig aaaa mail.dalan.pro +short
2001:470:1f05:a1d::51
[carl@mars ~]$ dig -x 2001:470:1f05:a1d::51 +short
[carl@mars ~]$


Your MX doesn't have RDNS.

If you've set it up, it still might have to replicate the changes...or, it's possible there's a glitch with HE.

I assume you've told HE to point all reverse lookups at your DNS server, and have configured your firewall to allow those lookups?


I am not sure how to tell HE to point all reverse lookups at my DNS server.
My firewall will allow these requests.

Dalan.

cholzhauer

After you login, click on the tunnel you want to set up RNDS for.

On that page, find "RDNS Delegation NS1:" and click where it says "none"

Enter the IPv6 address/DNS name of your DNS server.

If you have a second DNS server that you want to use, do the same thing for NS2

andelind

I think I found it, it's under the tunnel page. I am 1/2 blind.  ::)

andelind

cholzhauer or someone

Can you test my RDNS?

nslookup
Server:         2001:470:20::2
Address:        2001:470:20::2#53

Non-authoritative answer:
1.5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.d.1.a.0.5.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa        name = mail.dalan.pro.

Authoritative answers can be found from:

dig -x @2001:470:20::2 2001:470:1f05:a1d::51 +short
nothing

I don't know if it's working, a second opinion would be nice.

broquea

dig -x 2001:470:1f05:a1d::51 @2001:470:20::2 +short
mail.dalan.pro.


worked fine