On Jul 26, 2007, at 1:42 AM, Adrian von Bidder wrote:
> Could those with DNS expertise please take a quick look at  
> 193.138.215.60
> (c.ntpns.org or zbasel.fortytwo.ch)?  Since I noticed that some random
> people where using it as DNS server (outside of pool.ntp.org  
> services), I'm
> now denying everything but service for the zones the server is
> authoritative for.  ... and I just hope there's no mistake.

Seems to be working fine.  I get an AA for queries for  
*.pool.ntp.org, and connection refused for recursive queries for  
other domains:

% dig 0.pool.ntp.org @193.138.215.60
; <<>> DiG 9.3.4-P1 <<>> 0.pool.ntp.org @193.138.215.60
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 54956
;; flags: qr aa rd; QUERY: 1, ANSWER: 14, AUTHORITY: 5, ADDITIONAL: 0

;; QUESTION SECTION:
;0.pool.ntp.org.                        IN      A

;; ANSWER SECTION:
0.pool.ntp.org.         2700    IN      A       67.128.71.75
0.pool.ntp.org.         2700    IN      A       82.197.162.50
0.pool.ntp.org.         2700    IN      A       84.18.164.36
0.pool.ntp.org.         2700    IN      A       88.198.8.101
0.pool.ntp.org.         2700    IN      A       124.10.47.8
0.pool.ntp.org.         2700    IN      A       195.98.27.171
0.pool.ntp.org.         2700    IN      A       195.234.188.3
0.pool.ntp.org.         2700    IN      A       198.60.22.240
0.pool.ntp.org.         2700    IN      A       203.82.213.101
0.pool.ntp.org.         2700    IN      A       208.67.183.233
0.pool.ntp.org.         2700    IN      A       209.104.4.231
0.pool.ntp.org.         2700    IN      A       213.129.242.82
0.pool.ntp.org.         2700    IN      A       213.203.226.170
0.pool.ntp.org.         2700    IN      A       62.193.225.80

;; AUTHORITY SECTION:
pool.ntp.org.           259200  IN      NS      b.ntpns.org.
pool.ntp.org.           259200  IN      NS      c.ntpns.org.
pool.ntp.org.           259200  IN      NS      d.ntpns.org.
pool.ntp.org.           259200  IN      NS      e.ntpns.org.
pool.ntp.org.           259200  IN      NS      a.ntpns.org.

;; Query time: 101 msec
;; SERVER: 193.138.215.60#53(193.138.215.60)
;; WHEN: Thu Jul 26 13:46:28 2007
;; MSG SIZE  rcvd: 342


% dig apple.com @193.138.215.60
; <<>> DiG 9.3.4-P1 <<>> apple.com @193.138.215.60
; (1 server found)
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 44163
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;apple.com.                     IN      A

;; Query time: 112 msec
;; SERVER: 193.138.215.60#53(193.138.215.60)
;; WHEN: Thu Jul 26 13:42:42 2007
;; MSG SIZE  rcvd: 27

-- 
-Chuck

_______________________________________________
timekeepers mailing list
[email protected]
https://fortytwo.ch/mailman/cgi-bin/listinfo/timekeepers

Reply via email to