APNIC Open Address Policy Meeting APNIC Reverse DNS February 27th, Kuala Lumpur, Bruce Campbell [email protected] ASIA PACIFIC NETWORK INFORMATION CENTRE.
Download ReportTranscript APNIC Open Address Policy Meeting APNIC Reverse DNS February 27th, Kuala Lumpur, Bruce Campbell [email protected] ASIA PACIFIC NETWORK INFORMATION CENTRE.
APNIC Open Address Policy Meeting APNIC Reverse DNS February 27th, Kuala Lumpur, Bruce Campbell [email protected] ASIA PACIFIC NETWORK INFORMATION CENTRE Purpose of APNIC Reverse DNS Delegation of IP space from APNIC to ISPs etc. (in-addr.arpa / ip6.int ) Not automatically set up as part of an IP allocation from APNIC. ASIA PACIFIC NETWORK INFORMATION CENTRE Reverse Delegations Stored in APNIC WHOIS database as domain objects. Automatic form checks domain and nameserver configuration for sanity ‘Sanity’ is at least two nameservers, and information consistent across nameservers and form (ie, SOA same, NS list same, authority set) Assumes knowledge of Reverse DNS ASIA PACIFIC NETWORK INFORMATION CENTRE What is a Domain Object? Domain: 63.62.61.in-addr.arpa Descr: Server and Office Subnet Country: AU Admin-c: (APNIC) NIC-HDL Tech-c: (APNIC) NIC-HDL Zone-c: (APNIC) NIC-HDL nserver: ns1.my.forward.domain nserver: ns.some.faraway.site ASIA PACIFIC NETWORK INFORMATION CENTRE What is a Domain Object (2) ? Remarks: free text notify: Database emails this address mnt-by: MAINT-My-Maintainer-Object mnt-lower: MAINT-My-Maintainer-Object changed: email@address YYYYMMDD source: APNIC Standard APNIC database object. ASIA PACIFIC NETWORK INFORMATION CENTRE Limitations Classful delegations (limited to the ‘.’ boundaries). (/19 allocation must delegate 32 /24s) Not telepathic, must request (re)delegation. Must have nameservers set up before requesting delegation. Changes made public (officially) only once per business day (10am, UTC+1000) on ns.apnic.net . ASIA PACIFIC NETWORK INFORMATION CENTRE Via Email Standard APNIC database object, can be updated via email. Nameserver/domain set up verified before being submitted to the database. Protection by maintainer object (current auths of NONE, Email address, password or PGP). No zone file rebuilds occur on weekends. ASIA PACIFIC NETWORK INFORMATION CENTRE On the Web and Interactive Http://www.apnic.net/db/domain.html ASIA PACIFIC NETWORK INFORMATION CENTRE Online Errors (also via Email) ASIA PACIFIC NETWORK INFORMATION CENTRE Request Sent to APNIC ASIA PACIFIC NETWORK INFORMATION CENTRE Successful Update ASIA PACIFIC NETWORK INFORMATION CENTRE Questions? [email protected] ASIA PACIFIC NETWORK INFORMATION CENTRE