nanog mailing list archives

Re: Thoughts on best practice for naming router infrastructure in DNS

From: Joe Abley <jabley () ca afilias info>
Date: Fri, 15 Jun 2007 09:39:35 -0400



On 14-Jun-2007, at 16:25, K K wrote:

On 6/14/07, randal k <nanog () data102 com> wrote:
This particular issue has been confounding to work around as well.The issueof constantly updating DNS to match the current topology is apain, but in
my opinion, very necessary.
I'm not entirely convinced DNS records for every possible interface
address are needed, in part because it's so difficult to keep them
updated with topology changes over time.

I once wrote a couple of scripts to parse a repository ofconfigurations stored by rancid, and to produce zone file fragmentswhich could be INCLUDEd into zones and published in the DNSautomagically. It wasn't hard. There is some text about it in thetutorial I wrote for NANOG 26, which Stephen Stuart presented after Iaccidentally went to an ICANN meeting in Shanghai instead of going toEugene:


  http://www.nanog.org/mtg-0210/ppt/stephen.pdf

Check pages 37-41. You'll find example scripts here:

  ftp://ftp.isc.org/isc/toolmakers/

I can't pretend I have used it since 2002, so some hacking may berequired. Also, unless you have a particular reason to generate atopology map of a network for other reasons, and unless your namingscheme is based on something that looks like an undirected graph, youmay find it easier to write something a little more focussed. Forexample, the trivial awk script


/^interface / {
  ifname = $2;
  gsub(/\//, "-", ifname);
  gsub(/\./, "-", ifname);
}

/^ ip address / {
  print $3, ifname ".someisp.net";
}

will digest cisco-style configs like

interface FastEthernet3/1/0.214
 ip address 203.97.1.241 255.255.255.240
 ...
!
interface POS3/2
 ip address 199.212.93.1 255.255.255.252
 ...

and excrete the following, for example:

203.97.1.241 FastEthernet3-1-0-214.someisp.net
199.212.93.1 POS3-2.someisp.net

Building IN-ADDR.ARPA zones from data like that is not at alldifficult. Dealing with JUNOS configs is marginally more difficultwith line-based tools like awk, but still entirely possible (seethose example scripts I mentioned for examples).

Package up some of this stuff so it will run unattended, and run itout of cron every $interval, and suddenly reverse DNS takes no effortat all.

The hard bit is back at the beginning, working out what the mappingof router configuration -> DNS name should be (i.e. what your namingscheme is).

Joe

Current thread:

Thoughts on best practice for naming router infrastructure in DNS Olsen, Jason (Jun 14)
- Re: Thoughts on best practice for naming router infrastructure in DNS randal k (Jun 14)
  - Re: Thoughts on best practice for naming router infrastructure in DNS K K (Jun 14)
    - Re: Thoughts on best practice for naming router infrastructure in DNS Joe Abley (Jun 15)
- Re: Thoughts on best practice for naming router infrastructure in DNS Mark Tinka (Jun 29)
  - Re: Thoughts on best practice for naming router infrastructure in DNS Leigh Porter (Jun 29)
    - Re: Thoughts on best practice for naming router infrastructure in DNS Alexander Harrowell (Jun 29)
    - Re: Thoughts on best practice for naming router infrastructure in DNS Chris L. Morrow (Jun 29)
    - Re: Thoughts on best practice for naming router infrastructure in DNS Cat Okita (Jun 29)
    - Re: Thoughts on best practice for naming router infrastructure in DNS Chris L. Morrow (Jun 29)
- <Possible follow-ups>
- RE: Thoughts on best practice for naming router infrastructure in DNS Neil J. McRae (Jun 29)
  - RE: Thoughts on best practice for naming router infrastructure in DNS Justin M. Streiner (Jun 29)
  - Re: Thoughts on best practice for naming router infrastructure in DNS David Freedman (Jun 29)
  - Re: Thoughts on best practice for naming router infrastructure in DNS Pete Ehlke (Jun 29)

(Thread continues...)