[nsd-users] Unbound Problems (Reverse Direction)

Ken.Hendrickson at L3Harris.com Ken.Hendrickson at L3Harris.com
Thu Jul 9 17:44:48 UTC 2020 

Nope.  I still don't have it working.
NSD is working in both directions.
Unbound is only working in the forward direction.





Here is proof that both Unbound and NSD are working in the forward direction:
------------------------------------------------------------------------
7 Soekris2# nslookup nas2
Server:		127.0.0.1
Address:	127.0.0.1#53

Non-authoritative answer:
Name:	nas2.Foo.Bar
Address: 172.24.10.2
------------------------------------------------------------------------





Here is proof that NSD is working in the reverse direction:
------------------------------------------------------------------------
8 Soekris2# nslookup 
> server 127.0.0.1
Default server: 127.0.0.1
Address: 127.0.0.1#53
> set port=53053
> 172.24.10.2
Server:		127.0.0.1
Address:	127.0.0.1#53053

2.10.24.172.in-addr.arpa	name = nas2.foo.bar.
------------------------------------------------------------------------





But somehow, Unbound is not working in the reverse direction:
------------------------------------------------------------------------
6 Soekris2# nslookup 172.24.10.2
Server:		127.0.0.1
Address:	127.0.0.1#53

** server can't find 2.10.24.172.in-addr.arpa: NXDOMAIN
------------------------------------------------------------------------





Here is the relevant part of my unbound.conf:
------------------------------------------------------------------------
# Use nsd to resolve local names.
# Do not send these queries to the root servers.
stub-zone:
        name:      Foo.Bar.
        stub-addr: 127.0.0.1 at 53053
stub-zone:
        name:      10.24.172.in-addr.arpa.
        stub-addr: 127.0.0.1 at 53053
stub-zone:
        name:      20.24.172.in-addr.arpa.
        stub-addr: 127.0.0.1 at 53053
stub-zone:
        name:      30.24.172.in-addr.arpa.
        stub-addr: 127.0.0.1 at 53053
stub-zone:
        name:      2.168.192.in-arpa.arpa.
        stub-addr: 127.0.0.1 at 53053
stub-zone:
        name:      224.in-addr.arpa.
        stub-addr: 127.0.0.1 at 53053
stub-zone:
        name:      255.in-addr.arpa.
        stub-addr: 127.0.0.1 at 53053
------------------------------------------------------------------------





Any ideas?  What am I still doing wrong??



NSD is listening on port 53053, and works (as proved above)
for resolving in the reverse direction.

Why doesn't unbound work?



  

CONFIDENTIALITY NOTICE: This email and any attachments are for the sole use of the intended recipient and may contain material that is proprietary, confidential, privileged or otherwise legally protected or restricted under applicable government laws. Any review, disclosure, distributing or other use without expressed permission of the sender is strictly prohibited. If you are not the intended recipient, please contact the sender and delete all copies without reading, printing, or saving.

More information about the nsd-users mailing list