Blame
Date:
Wed Feb 1 05:00:29 2023 UTC
Message:
Daily backup
01
2023-01-22
jrmu
version=pmwiki-2.2.130 ordered=1 urlencoded=1
02
2023-01-22
jrmu
agent=w3m/0.5.3+git20210102
03
2023-01-22
jrmu
author=jrmu
04
2023-01-22
jrmu
charset=UTF-8
05
2023-01-22
jrmu
csum=
06
2023-01-22
jrmu
ctime=1606815945
07
2023-01-22
jrmu
host=38.87.162.8
08
2023-01-22
jrmu
name=Openbsd.RDNS
09
2023-01-22
jrmu
rev=20
10
2023-01-22
jrmu
targets=Openbsd.Nsd,Openbsd.IPv6,Openbsd.Host,Openbsd.Dig,Openbsd.Netcat
11
2023-01-22
jrmu
text=(:redirect DNS/ipv6rDNS:)%0a(:title Configuring rDNS using NSD:)%0a%0aWe can configure our rDNS using [[openbsd/nsd|nsd]], an authoritative name server. nsd comes as part of openbsd base so no installation will be necessary.%0a%0a'''NOTICE''': This guide assumes you have already configured [[openbsd/nsd|nsd]] for forward DNS resolution.%0a%0a!! IPv6 Subnet%0a%0aSuppose we have been delegated the rDNS zone for our [[openbsd/IPv6|IPv6]] subnet, 2001:550:3402:1:143::/80. To find out our zone, we need to fill in all the missing zeros, put periods between each digit, reverse the digits, then add ip6.arpa:%0a%0a[@%0a2001:550:3402:1:143:: # original subnet%0a2001:0550:3402:0001:0143:: # fill in the missing zeros%0a2.0.0.1.0.5.5.0.3.4.0.2.0.0.0.1.0.1.4.3 # add periods between each digit%0a3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2 # reverse the digits%0a3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa # add ip6.arpa%0a@]%0a%0aHere is a simple command to do this:%0a%0a[@%0aecho "%3cIPv6 subnet>"|rev|sed "s/://g;s/\(.\)/\1./g;s/$/ip6.arpa/"%0a@]%0a%0a(:if false:)%0agrep inet6.*48 /etc/hostname.vio0|awk '{print$2}'|rev|sed "s/://g;s/\(.\)/\1./g;s/$/ip6.arpa/"%0a(:ifend:)%0a%0aReplace %3cIPv6 subnet> with your real IPv6 subnet. Make sure to fill in any missing zeros.%0a%0aFor example:%0a%0a[@%0aecho "2001:0550:3402:0001"|rev|sed "s/://g;s/\(.\)/\1./g;s/$/ip6.arpa/"%0a@]%0a%0a!! Zone File%0a%0aNow we must create the zone file in /var/nsd/zones/master/3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa:%0a%0a[@%0a$ORIGIN 3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa.%0a@ 3600 IN SOA ns1.ircnow.org. admin.ircnow.org. (%0a 2021020105 1800 3600 1209600 3600 )%0a 3600 IN NS ns1.jrmu.coconut.ircnow.org.%0a 3600 IN NS ns2.jrmu.coconut.ircnow.org.%0a0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR user1.coconut.ircnow.org.%0a1.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR user2.coconut.ircnow.org.%0a@]%0a%0a!! /var/nsd/etc/nsd.conf%0a%0aNow we only need to add this section to /var/nsd/etc/nsd.conf:%0a%0a[@%0azone:%0a name: "3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a zonefile: "master/3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a@]%0a%0a!! Restart nsd and test%0a%0a[@%0a$ doas rcctl restart nsd%0a@]%0a%0aWe can test using [[openbsd/host|host]] or [[openbsd/dig|dig]]:%0a%0a[@%0ahost 2001:550:3402:1:143::1 %3cnameserver-ip>%0a@]%0a%0aReplace %3cnameserver-ip> with your actual nameserver IP. Once you have confirmed this is working, you can then ask to have your zone delegated to your nameserver.%0a%0aYou can then test if both forward and reverse DNS lookup work by using [[openbsd/netcat|netcat]] to connect to IRC.%0a%0a(:if false:)%0a!! Troubleshooting%0a%0a!! Primary and secondary server%0a%0aIf you need a secondary server to host the zone, you can do this as follows. Add to the block that describes your master zone, records about the secondary zone as in the example:%0a%0a[@%0azone:%0a name: "example.net"%0a zonefile: "master/example.net"%0a notify: 20.20.20.20 NOKEY%0a provide-xfr: 20.20.20.20 NOKEY%0a@]%0a%0aCreate a new block in the secondary server config file, as in the example:%0a%0a[@%0azone:%0a name: "example.net"%0a zonefile: "slave/example.net"%0a allow-notify: 10.10.10.10 NOKEY%0a request-xfr: 10.10.10.10 NOKEY%0a@]%0a%0a!! The zone file for NSD%0a%0aThe next step is to write the zone files for NSD. First the forward lookup zone example.net:%0a%0a[@%0a; Domain file from My project%0a%0aexample.net. 3600 SOA ns.example.net. admin.example.net. (%0a 2020070701 ; serial YYYYMMDDnn%0a 10800 ; refresh%0a 3600 ; retry%0a 604800 ; expire%0a 86400 ) ; minimum TTL%0a%0aexample.net. NS ns.example.net.%0aexample.net. NS ns.secondary.net.%0ans A 10.10.10.10%0aexample.net. A 10.10.10.10%0awww A 10.10.10.10%0airc A 10.10.10.10%0aimap A 10.10.10.10%0asmtp A 10.10.10.10%0aexample.net. mx 10 smtp.example.net.%0a@]%0a%0aSave this zone file as /var/nsd/zones/master/example.net%0a%0a!! Configuration check and start%0a%0aNSD bring along a tool to check the configuration file before you start or reload the daemon:%0a%0a[@%0a$ doas nsd-checkconf /var/nsd/etc/nsd.conf%0a@]%0a%0aAny errors are reported, so no news are good news. You can go ahead and start NSD:%0a%0a[@%0a$ doas rcctl enable nsd%0a$ doas rcctl start nsd%0a@]%0a%0aIf there are issues you can start nsd in debug mode%0a%0a[@%0adoas nsd -d -V 3%0a@]%0a%0ahttps://www.denic.de/en/service/tools/nast/%0a%0a%0a%0a[@%0a$ORIGIN 1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa.%0a@ 3600 IN SOA ns1.ircnow.org. admin.ircnow.org. (%0a 2020112906 1800 3600 1209600 3600 )%0a 3600 IN NS cherry.ircnow.org.%0a 3600 IN NS pear.ircnow.org.%0a 3600 IN NS mango.ircnow.org.%0a 3600 IN NS peach.ircnow.org.%0a 3600 IN NS banana.ircnow.org.%0a 3600 IN NS guava.ircnow.org.%0a 3600 IN NS jujube.ircnow.org.%0a 3600 IN NS plum.ircnow.org.%0a 3600 IN NS fig.ircnow.org.%0a 3600 IN NS orange.ircnow.org.%0a 3600 IN NS lemon.ircnow.org.%0a 3600 IN NS grape.ircnow.org.%0a 3600 IN NS coconut.ircnow.org.%0a0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.com.%0a1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.org.%0a@]%0a%0aIn /var/nsd/etc/nsd.conf:%0a%0a[@%0azone:%0a name: "1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a zonefile: "master/1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a include-pattern: "ircnow.org"%0a@]%0a(:ifend:)%0a
12
2023-01-22
jrmu
time=1627022661
13
2023-01-22
jrmu
title=Configuring rDNS using NSD
14
2023-01-22
jrmu
author:1627022661=jrmu
15
2023-01-22
jrmu
diff:1627022661:1619353356:=1d0%0a%3c (:redirect DNS/ipv6rDNS:)%0a184c183%0a%3c (:ifend:)%0a---%0a> (:ifend:)%0a\ No newline at end of file%0a
16
2023-01-22
jrmu
host:1627022661=38.87.162.8
17
2023-01-22
jrmu
author:1619353356=jrmu
18
2023-01-22
jrmu
diff:1619353356:1619352861:=24,27d23%0a%3c %0a%3c (:if false:)%0a%3c grep inet6.*48 /etc/hostname.vio0|awk '{print$2}'|rev|sed "s/://g;s/\(.\)/\1./g;s/$/ip6.arpa/"%0a%3c (:ifend:)%0a
19
2023-01-22
jrmu
host:1619353356=198.251.81.119
20
2023-01-22
jrmu
author:1619352861=jrmu
21
2023-01-22
jrmu
diff:1619352861:1617625259:=
22
2023-01-22
jrmu
host:1619352861=198.251.81.119
23
2023-01-22
jrmu
author:1617625259=jrmu
24
2023-01-22
jrmu
diff:1617625259:1617609240:=22c22%0a%3c echo "%3cIPv6 subnet>"|rev|sed "s/://g;s/\(.\)/\1./g;s/$/ip6.arpa/"%0a---%0a> echo "%3cIPv6 address>"|rev|sed "s/://g;s/\(.\)/\1./g;s/$/ip6.arpa/"%0a25,31c25%0a%3c Replace %3cIPv6 subnet> with your real IPv6 subnet. Make sure to fill in any missing zeros.%0a%3c %0a%3c For example:%0a%3c %0a%3c [@%0a%3c echo "2001:0550:3402:0001"|rev|sed "s/://g;s/\(.\)/\1./g;s/$/ip6.arpa/"%0a%3c @]%0a---%0a> Replace %3cIPv6 address> with your real IPv6 address.%0a
25
2023-01-22
jrmu
host:1617625259=198.251.81.44
26
2023-01-22
jrmu
author:1617609240=jrmu
27
2023-01-22
jrmu
diff:1617609240:1617608292:=22c22%0a%3c echo "%3cIPv6 address>"|rev|sed "s/://g;s/\(.\)/\1./g;s/$/ip6.arpa/"%0a---%0a> echo "2001:0550:3402:0001:0143"|rev|sed "s/://g;s/\(.\)/\1./g"%0a24,25d23%0a%3c %0a%3c Replace %3cIPv6 address> with your real IPv6 address.%0a
28
2023-01-22
jrmu
host:1617609240=198.251.81.44
29
2023-01-22
jrmu
author:1617608292=jrmu
30
2023-01-22
jrmu
diff:1617608292:1612245460:=17,22d16%0a%3c @]%0a%3c %0a%3c Here is a simple command to do this:%0a%3c %0a%3c [@%0a%3c echo "2001:0550:3402:0001:0143"|rev|sed "s/://g;s/\(.\)/\1./g"%0a
31
2023-01-22
jrmu
host:1617608292=198.251.81.44
32
2023-01-22
jrmu
author:1612245460=jrmu
33
2023-01-22
jrmu
diff:1612245460:1612239800:=59d58%0a%3c (:if false:)%0a164,165c163%0a%3c @]%0a%3c (:ifend:)%0a\ No newline at end of file%0a---%0a> @]%0a\ No newline at end of file%0a
34
2023-01-22
jrmu
host:1612245460=198.251.81.119
35
2023-01-22
jrmu
author:1612239800=jrmu
36
2023-01-22
jrmu
diff:1612239800:1612230426:=
37
2023-01-22
jrmu
host:1612239800=198.251.81.119
38
2023-01-22
jrmu
author:1612230426=jrmu
39
2023-01-22
jrmu
diff:1612230426:1612196762:=43,44d42%0a%3c !! Restart nsd and test%0a%3c %0a49,50c47,50%0a%3c We can test using [[openbsd/host|host]] or [[openbsd/dig|dig]]:%0a%3c %0a---%0a> !! Troubleshooting%0a> %0a> To test if it works, use [[openbsd/host|host]] or [[openbsd/dig|dig]]:%0a> %0a58,59d57%0a%3c %0a%3c !! Troubleshooting%0a
40
2023-01-22
jrmu
host:1612230426=198.251.81.119
41
2023-01-22
jrmu
author:1612196762=jrmu
42
2023-01-22
jrmu
diff:1612196762:1612196703:=55,57c55%0a%3c Replace %3cnameserver-ip> with your actual nameserver IP. Once you have confirmed this is working, you can then ask to have your zone delegated to your nameserver.%0a%3c %0a%3c You can then test if both forward and reverse DNS lookup work by using [[openbsd/netcat|netcat]] to connect to IRC.%0a---%0a> Replace %3cnameserver-ip> with your actual nameserver IP. %0a
43
2023-01-22
jrmu
host:1612196762=198.251.81.119
44
2023-01-22
jrmu
author:1612196703=jrmu
45
2023-01-22
jrmu
diff:1612196703:1612196273:=19,20d18%0a%3c !! Zone File%0a%3c %0a22a21,24%0a> !! /var/nsd/etc/nsd.conf%0a> %0a> We only need to add two sections to /var/nsd/etc/nsd.conf:%0a> %0a24,30c26,28%0a%3c $ORIGIN 3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa.%0a%3c @ 3600 IN SOA ns1.ircnow.org. admin.ircnow.org. (%0a%3c 2021020105 1800 3600 1209600 3600 )%0a%3c 3600 IN NS ns1.jrmu.coconut.ircnow.org.%0a%3c 3600 IN NS ns2.jrmu.coconut.ircnow.org.%0a%3c 0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR user1.coconut.ircnow.org.%0a%3c 1.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR user2.coconut.ircnow.org.%0a---%0a> zone:%0a> name: "3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a> zonefile: "master/3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a32,55d29%0a%3c %0a%3c !! /var/nsd/etc/nsd.conf%0a%3c %0a%3c Now we only need to add this section to /var/nsd/etc/nsd.conf:%0a%3c %0a%3c [@%0a%3c zone:%0a%3c name: "3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a%3c zonefile: "master/3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a%3c @]%0a%3c %0a%3c [@%0a%3c $ doas rcctl restart nsd%0a%3c @]%0a%3c %0a%3c !! Troubleshooting%0a%3c %0a%3c To test if it works, use [[openbsd/host|host]] or [[openbsd/dig|dig]]:%0a%3c %0a%3c [@%0a%3c host 2001:550:3402:1:143::1 %3cnameserver-ip>%0a%3c @]%0a%3c %0a%3c Replace %3cnameserver-ip> with your actual nameserver IP. %0a
46
2023-01-22
jrmu
host:1612196703=198.251.81.119
47
2023-01-22
jrmu
author:1612196273=jrmu
48
2023-01-22
jrmu
diff:1612196273:1612195574:=1,10c1,2%0a%3c (:title Configuring rDNS using NSD:)%0a%3c %0a%3c We can configure our rDNS using [[openbsd/nsd|nsd]], an authoritative name server. nsd comes as part of openbsd base so no installation will be necessary.%0a%3c %0a%3c '''NOTICE''': This guide assumes you have already configured [[openbsd/nsd|nsd]] for forward DNS resolution.%0a%3c %0a%3c !! IPv6 Subnet%0a%3c %0a%3c Suppose we have been delegated the rDNS zone for our [[openbsd/IPv6|IPv6]] subnet, 2001:550:3402:1:143::/80. To find out our zone, we need to fill in all the missing zeros, put periods between each digit, reverse the digits, then add ip6.arpa:%0a%3c %0a---%0a> Suppose you were delegated the rDNS zone for 2001:550:3402:1::/48. Fill in the missing zeros, then put periods between each digit, reverse them, then add ip6.arpa to get 1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa. In /var/nsd/zones/master/1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa:%0a> %0a12,16c4,21%0a%3c 2001:550:3402:1:143:: # original subnet%0a%3c 2001:0550:3402:0001:0143:: # fill in the missing zeros%0a%3c 2.0.0.1.0.5.5.0.3.4.0.2.0.0.0.1.0.1.4.3 # add periods between each digit%0a%3c 3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2 # reverse the digits%0a%3c 3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa # add ip6.arpa%0a---%0a> $ORIGIN 1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa.%0a> @ 3600 IN SOA ns1.ircnow.org. admin.ircnow.org. (%0a> 2020112906 1800 3600 1209600 3600 )%0a> 3600 IN NS cherry.ircnow.org.%0a> 3600 IN NS pear.ircnow.org.%0a> 3600 IN NS mango.ircnow.org.%0a> 3600 IN NS peach.ircnow.org.%0a> 3600 IN NS banana.ircnow.org.%0a> 3600 IN NS guava.ircnow.org.%0a> 3600 IN NS jujube.ircnow.org.%0a> 3600 IN NS plum.ircnow.org.%0a> 3600 IN NS fig.ircnow.org.%0a> 3600 IN NS orange.ircnow.org.%0a> 3600 IN NS lemon.ircnow.org.%0a> 3600 IN NS grape.ircnow.org.%0a> 3600 IN NS coconut.ircnow.org.%0a> 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.com.%0a> 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.org.%0a19,24c24,25%0a%3c Now we must create the zone file in /var/nsd/zones/master/3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa:%0a%3c %0a%3c !! /var/nsd/etc/nsd.conf%0a%3c %0a%3c We only need to add two sections to /var/nsd/etc/nsd.conf:%0a%3c %0a---%0a> In /var/nsd/etc/nsd.conf:%0a> %0a27,28c28,30%0a%3c name: "3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a%3c zonefile: "master/3.4.1.0.1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a---%0a> name: "1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a> zonefile: "master/1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a> include-pattern: "ircnow.org"%0a31,34c33,40%0a%3c !! Primary and secondary server%0a%3c %0a%3c If you need a secondary server to host the zone, you can do this as follows. Add to the block that describes your master zone, records about the secondary zone as in the example:%0a%3c %0a---%0a> (:title Configuring nsd:)%0a> %0a> nsd is an authoritative name server. Because nsd comes in OpenBSD base, it is our preferred nameserver.%0a> %0a> !! /var/nsd/etc/nsd.conf (main configuration file)%0a> %0a> Open up /var/nsd/etc/nsd.conf:%0a> %0a35a42,56%0a> server:%0a> ip-address: 0.0.0.0%0a> ip4-only: yes%0a> identity: "DNS"%0a> hide-version: yes%0a> verbosity: 1%0a> database: ""%0a> username: _nsd%0a> logfile: "/var/log/nsd.log"%0a> pidfile: "/var/nsd/run/nsd.pid"%0a> %0a> remote-control:%0a> control-enable: yes%0a> control-interface: /var/nsd/run/nsd.sock%0a> %0a37,40c58,60%0a%3c name: "example.net"%0a%3c zonefile: "master/example.net"%0a%3c notify: 20.20.20.20 NOKEY%0a%3c provide-xfr: 20.20.20.20 NOKEY%0a---%0a> name: "example.com"%0a> zonefile: "master/example.com"%0a> %0a43,44c63,66%0a%3c Create a new block in the secondary server config file, as in the example:%0a%3c %0a---%0a> !! Primary and secondary server%0a> %0a> If you need a secondary server to host the zone, you can do this as follows. Add to the block that describes your master zone, records about the secondary zone as in the example:%0a> %0a48,50c70,72%0a%3c zonefile: "slave/example.net"%0a%3c allow-notify: 10.10.10.10 NOKEY%0a%3c request-xfr: 10.10.10.10 NOKEY%0a---%0a> zonefile: "master/example.net"%0a> notify: 20.20.20.20 NOKEY%0a> provide-xfr: 20.20.20.20 NOKEY%0a53,56c75,76%0a%3c !! The zone file for NSD%0a%3c %0a%3c The next step is to write the zone files for NSD. First the forward lookup zone example.net:%0a%3c %0a---%0a> Create a new block in the secondary server config file, as in the example:%0a> %0a57a78,89%0a> zone:%0a> name: "example.net"%0a> zonefile: "slave/example.net"%0a> allow-notify: 10.10.10.10 NOKEY%0a> request-xfr: 10.10.10.10 NOKEY%0a> @]%0a> %0a> !! The zone file for NSD%0a> %0a> The next step is to write the zone files for NSD. First the forward lookup zone example.net:%0a> %0a> [@%0a101,133c133%0a%3c https://www.denic.de/en/service/tools/nast/%0a%3c %0a%3c %0a%3c %0a%3c [@%0a%3c $ORIGIN 1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa.%0a%3c @ 3600 IN SOA ns1.ircnow.org. admin.ircnow.org. (%0a%3c 2020112906 1800 3600 1209600 3600 )%0a%3c 3600 IN NS cherry.ircnow.org.%0a%3c 3600 IN NS pear.ircnow.org.%0a%3c 3600 IN NS mango.ircnow.org.%0a%3c 3600 IN NS peach.ircnow.org.%0a%3c 3600 IN NS banana.ircnow.org.%0a%3c 3600 IN NS guava.ircnow.org.%0a%3c 3600 IN NS jujube.ircnow.org.%0a%3c 3600 IN NS plum.ircnow.org.%0a%3c 3600 IN NS fig.ircnow.org.%0a%3c 3600 IN NS orange.ircnow.org.%0a%3c 3600 IN NS lemon.ircnow.org.%0a%3c 3600 IN NS grape.ircnow.org.%0a%3c 3600 IN NS coconut.ircnow.org.%0a%3c 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.com.%0a%3c 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.org.%0a%3c @]%0a%3c %0a%3c In /var/nsd/etc/nsd.conf:%0a%3c %0a%3c [@%0a%3c zone:%0a%3c name: "1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a%3c zonefile: "master/1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a%3c include-pattern: "ircnow.org"%0a%3c @]%0a\ No newline at end of file%0a---%0a> https://www.denic.de/en/service/tools/nast/%0a\ No newline at end of file%0a
49
2023-01-22
jrmu
host:1612196273=198.251.81.119
50
2023-01-22
jrmu
author:1612195574=jrmu
51
2023-01-22
jrmu
diff:1612195574:1612098792:=31,133c31%0a%3c @]%0a%3c %0a%3c (:title Configuring nsd:)%0a%3c %0a%3c nsd is an authoritative name server. Because nsd comes in OpenBSD base, it is our preferred nameserver.%0a%3c %0a%3c !! /var/nsd/etc/nsd.conf (main configuration file)%0a%3c %0a%3c Open up /var/nsd/etc/nsd.conf:%0a%3c %0a%3c [@%0a%3c server:%0a%3c ip-address: 0.0.0.0%0a%3c ip4-only: yes%0a%3c identity: "DNS"%0a%3c hide-version: yes%0a%3c verbosity: 1%0a%3c database: ""%0a%3c username: _nsd%0a%3c logfile: "/var/log/nsd.log"%0a%3c pidfile: "/var/nsd/run/nsd.pid"%0a%3c %0a%3c remote-control:%0a%3c control-enable: yes%0a%3c control-interface: /var/nsd/run/nsd.sock%0a%3c %0a%3c zone:%0a%3c name: "example.com"%0a%3c zonefile: "master/example.com"%0a%3c %0a%3c @]%0a%3c %0a%3c !! Primary and secondary server%0a%3c %0a%3c If you need a secondary server to host the zone, you can do this as follows. Add to the block that describes your master zone, records about the secondary zone as in the example:%0a%3c %0a%3c [@%0a%3c zone:%0a%3c name: "example.net"%0a%3c zonefile: "master/example.net"%0a%3c notify: 20.20.20.20 NOKEY%0a%3c provide-xfr: 20.20.20.20 NOKEY%0a%3c @]%0a%3c %0a%3c Create a new block in the secondary server config file, as in the example:%0a%3c %0a%3c [@%0a%3c zone:%0a%3c name: "example.net"%0a%3c zonefile: "slave/example.net"%0a%3c allow-notify: 10.10.10.10 NOKEY%0a%3c request-xfr: 10.10.10.10 NOKEY%0a%3c @]%0a%3c %0a%3c !! The zone file for NSD%0a%3c %0a%3c The next step is to write the zone files for NSD. First the forward lookup zone example.net:%0a%3c %0a%3c [@%0a%3c ; Domain file from My project%0a%3c %0a%3c example.net. 3600 SOA ns.example.net. admin.example.net. (%0a%3c 2020070701 ; serial YYYYMMDDnn%0a%3c 10800 ; refresh%0a%3c 3600 ; retry%0a%3c 604800 ; expire%0a%3c 86400 ) ; minimum TTL%0a%3c %0a%3c example.net. NS ns.example.net.%0a%3c example.net. NS ns.secondary.net.%0a%3c ns A 10.10.10.10%0a%3c example.net. A 10.10.10.10%0a%3c www A 10.10.10.10%0a%3c irc A 10.10.10.10%0a%3c imap A 10.10.10.10%0a%3c smtp A 10.10.10.10%0a%3c example.net. mx 10 smtp.example.net.%0a%3c @]%0a%3c %0a%3c Save this zone file as /var/nsd/zones/master/example.net%0a%3c %0a%3c !! Configuration check and start%0a%3c %0a%3c NSD bring along a tool to check the configuration file before you start or reload the daemon:%0a%3c %0a%3c [@%0a%3c $ doas nsd-checkconf /var/nsd/etc/nsd.conf%0a%3c @]%0a%3c %0a%3c Any errors are reported, so no news are good news. You can go ahead and start NSD:%0a%3c %0a%3c [@%0a%3c $ doas rcctl enable nsd%0a%3c $ doas rcctl start nsd%0a%3c @]%0a%3c %0a%3c If there are issues you can start nsd in debug mode%0a%3c %0a%3c [@%0a%3c doas nsd -d -V 3%0a%3c @]%0a%3c %0a%3c https://www.denic.de/en/service/tools/nast/%0a\ No newline at end of file%0a---%0a> @]%0a\ No newline at end of file%0a
52
2023-01-22
jrmu
host:1612195574=198.251.81.119
53
2023-01-22
jrmu
author:1612098792=jrmu
54
2023-01-22
jrmu
diff:1612098792:1612098681:=1,2c1,2%0a%3c Suppose you were delegated the rDNS zone for 2001:550:3402:1::/48. Fill in the missing zeros, then put periods between each digit, reverse them, then add ip6.arpa to get 1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa. In /var/nsd/zones/master/1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa:%0a%3c %0a---%0a> Suppose you were delegated the rDNS zone for 2001:550:3402:1::/48. Put periods between each digit, reverse them, then add ip6.arpa to get 1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa. In /var/nsd/zones/master/1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa.:%0a> %0a4c4%0a%3c $ORIGIN 1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa.%0a---%0a> $ORIGIN 1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa.%0a28,29c28,29%0a%3c name: "1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a%3c zonefile: "master/1.0.0.0.2.0.4.3.0.5.5.0.1.0.0.2.ip6.arpa"%0a---%0a> name: "1.0.0.4.0.0.4.6.5.0.6.2.ip6.arpa"%0a> zonefile: "master/1.0.0.4.0.0.4.6.5.0.6.2.ip6.arpa"%0a
55
2023-01-22
jrmu
host:1612098792=125.224.24.163
56
2023-01-22
jrmu
author:1612098681=jrmu
57
2023-01-22
jrmu
diff:1612098681:1606922326:=1c1%0a%3c Suppose you were delegated the rDNS zone for 2001:550:3402:1::/48. Put periods between each digit, reverse them, then add ip6.arpa to get 1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa. In /var/nsd/zones/master/1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa.:%0a---%0a> Suppose you were delegated the rDNS zone for 2001:5503:4021::/48. Put periods between each digit, reverse them, then add ip6.arpa to get 1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa. In /var/nsd/zones/master/1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa.:%0a
58
2023-01-22
jrmu
host:1612098681=125.224.24.163
59
2023-01-22
jrmu
author:1606922326=jrmu
60
2023-01-22
jrmu
diff:1606922326:1606922113:=1c1%0a%3c Suppose you were delegated the rDNS zone for 2001:5503:4021::/48. Put periods between each digit, reverse them, then add ip6.arpa to get 1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa. In /var/nsd/zones/master/1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa.:%0a---%0a> Suppose you were delegated the rDNS zone for 2001:5503:4021::/48. Then, in /var/nsd/zones/master/1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa.:%0a
61
2023-01-22
jrmu
host:1606922326=125.224.25.38
62
2023-01-22
jrmu
author:1606922113=jrmu
63
2023-01-22
jrmu
diff:1606922113:1606815986:=1,2c1,2%0a%3c Suppose you were delegated the rDNS zone for 2001:5503:4021::/48. Then, in /var/nsd/zones/master/1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa.:%0a%3c %0a---%0a> Sample rdns zone file:%0a> %0a22,30d21%0a%3c @]%0a%3c %0a%3c In /var/nsd/etc/nsd.conf:%0a%3c %0a%3c [@%0a%3c zone:%0a%3c name: "1.0.0.4.0.0.4.6.5.0.6.2.ip6.arpa"%0a%3c zonefile: "master/1.0.0.4.0.0.4.6.5.0.6.2.ip6.arpa"%0a%3c include-pattern: "ircnow.org"%0a
64
2023-01-22
jrmu
host:1606922113=125.224.25.38
65
2023-01-22
jrmu
author:1606815986=jrmu
66
2023-01-22
jrmu
diff:1606815986:1606815964:=21c21%0a%3c 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.org.%0a---%0a> 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.org.%0a
67
2023-01-22
jrmu
host:1606815986=198.251.81.119
68
2023-01-22
jrmu
author:1606815964=jrmu
69
2023-01-22
jrmu
diff:1606815964:1606815945:=3d2%0a%3c [@%0a21,22c20%0a%3c 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.org.%0a%3c @]%0a\ No newline at end of file%0a---%0a> 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.org.%0a\ No newline at end of file%0a
70
2023-01-22
jrmu
host:1606815964=198.251.81.119
71
2023-01-22
jrmu
author:1606815945=jrmu
72
2023-01-22
jrmu
diff:1606815945:1606815945:=1,20d0%0a%3c Sample rdns zone file:%0a%3c %0a%3c $ORIGIN 1.2.0.4.3.0.5.5.1.0.0.2.ip6.arpa.%0a%3c @ 3600 IN SOA ns1.ircnow.org. admin.ircnow.org. (%0a%3c 2020112906 1800 3600 1209600 3600 )%0a%3c 3600 IN NS cherry.ircnow.org.%0a%3c 3600 IN NS pear.ircnow.org.%0a%3c 3600 IN NS mango.ircnow.org.%0a%3c 3600 IN NS peach.ircnow.org.%0a%3c 3600 IN NS banana.ircnow.org.%0a%3c 3600 IN NS guava.ircnow.org.%0a%3c 3600 IN NS jujube.ircnow.org.%0a%3c 3600 IN NS plum.ircnow.org.%0a%3c 3600 IN NS fig.ircnow.org.%0a%3c 3600 IN NS orange.ircnow.org.%0a%3c 3600 IN NS lemon.ircnow.org.%0a%3c 3600 IN NS grape.ircnow.org.%0a%3c 3600 IN NS coconut.ircnow.org.%0a%3c 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.com.%0a%3c 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 3600 IN PTR www.example.org.%0a\ No newline at end of file%0a
73
2023-01-22
jrmu
host:1606815945=198.251.81.119
IRCNow