Sorry, after query succesfully the DNS Blackholes, I repeat the command and the same servers couldn't be reached anymore:
DNS:~# host -t NS 10.IN-ADDR.ARPA 192.175.48.6 ;; connection timed out; no servers could be reached DNS:~# host -t NS 10.IN-ADDR.ARPA 192.175.48.42 ;; connection timed out; no servers could be reached I don't know why the DNS Blackholes don't respond always.....I continue quering the DNS Blackholes and they can't be reached anymore....why ? Thanks a lot again. 2018-04-18 11:44 GMT-03:00 Roberto Carna <robertocarn...@gmail.com>: > Dear, I have impelmented a BIND9 server. It works OK, but some days > ago an application failed because it needed to resolve the reverse of > some IP addresses from range 10.x.x.x, and they waited for a long time > and failed, because they need a NXDOMAIN fast response. > > I don't want to make a local zone 10.IN-ADDR.ARPA, because I want to > use the two public nameservers from Internet: > > BLACKHOLE-1.IANA.ORG (192.175.48.6) > BLACKHOLE-2.IANA.ORG (192.175.48.42) > > When I query these DNS's from my console from the BIND server, and > from any host I have available here, the result is this: > > root@DNS:~# host -t NS 10.IN-ADDR.ARPA 192.175.48.6 > Using domain server: > Name: 192.175.48.6 > Address: 192.175.48.6#53 > Aliases: > > 10.in-addr.arpa name server blackhole-2.iana.org. > 10.in-addr.arpa name server blackhole-1.iana.org. > > and finally I get the NXDOMAIN I need: > > DNS:~# host -t NS 10.10.12.1 192.175.48.6 > Using domain server: > Name: 192.175.48.6 > Address: 192.175.48.6#53 > Aliases: > > Host 1.12.10.10.in-addr.arpa. not found: 3(NXDOMAIN) > > Is it OK that I do? Are blackholes servers useful for this purpose ? > > Thanks a lot !!! _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
