nanog mailing list archives

Re: [Nanog] Re: IPv6 rDNS - how will it be done?

From: Stefan Schmidt <zaphodb () zaphods net>
Date: Wed, 28 Apr 2010 10:53:45 +0200


On 28.04.2010, at 09:31, Mark Scholten wrote:

Hmm. A macro expansion for a /48 would mean
1,208,925,819,614,629,174,706,176 leaves. An interesting stress test
for name servers... :-).
With LUA scripting and PowerDNS you could create a reverse DNS/forward DNS
based on the input and match it (IP or hostname). This could be really
dynamic and with using some cache it should also be fast. Checkingwhat IPv6address is in use and providing them a rDNS is also an option ofcourse (but
I think that will consume more power/bandwith/etc. on the long term).


Lua scripting is available for PowerDNS recursor only i fear,

you would want a authoritative DNS solution here and there already isone:This script [1] by Wijnand Modderman is a pipe backend for PowerDNSServerwhich will provide you with IPv6 forward and reverse entries muchlike DJB's

walldns does for IPv4. Due to the way backends are exhausted for answers
subsequently in PowerDNS Server i can have my mysql backend provide

IN AAAA and PTR records for hosts that i want named specifically andthen

let the pipe backend handle all the rest of my /48.

Slightly more seriously, there have been discussions in the pastabout
doing dynamic synthesis of v6 reverses, but that gets icky
(particularly if you invoke the dreaded "DNSSEC" curse) and I don't
know any production server that actually does this now. DynamicDNS is
probably the least offensive solution if you really want reverses for
your v6 nodes.
As long as you don't use DNSSEC the option above is possible, but with
DNSSEC many options will fail I think. Completely dynamic based on the
request of a client isn't an option if you ask me (or do wewant .local
addresses in the rDNS?).

DNSSEC support for PowerDNS Server is on it's way [2] and i think itshouldintegrate with most available backend types not for long, howeverwhats stillmissing is indeed the dynamic DNS support aka TSIG - i don't need itbut i

happen to know there have been a few requests for DDNS support in
PowerDNS recently, so maybe that will happen too.

 Stefan

[1] http://zaphods.net/~zaphodb/pdns-ipv6-reverse-backend.py
[2] http://mailman.powerdns.com/pipermail/pdns-users/2010-April/006671.html

Current thread:

Re: [Nanog] Re: IPv6 rDNS - how will it be done?, (continued)
- - - Re: [Nanog] Re: IPv6 rDNS - how will it be done? David Conrad (Apr 27)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? Jason 'XenoPhage' Frisvold (Apr 27)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? David Conrad (Apr 27)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? Richard Barnes (Apr 27)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? Steve Bertrand (Apr 27)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? John Levine (Apr 27)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? David Conrad (Apr 27)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? Felipe Zanchet Grazziotin (Apr 27)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? Jack Bates (Apr 28)
    - RE: [Nanog] Re: IPv6 rDNS - how will it be done? Mark Scholten (Apr 28)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? Stefan Schmidt (Apr 28)
    - Re: [Nanog] Re: IPv6 rDNS - how will it be done? Mark Andrews (Apr 27)
- Re: IPv6 rDNS - how will it be done? David Pérez (Apr 28)
  - Re: IPv6 rDNS - how will it be done? Stefan Schmidt (Apr 28)