Date: Tue, 22 Jul 2003 16:53:22 +0200 From: "Leif Neland" <leifn@neland.dk> To: "Adam Maloney" <adamm@sihope.com>, "Ted Cabeen" <secabeen@pobox.com> Cc: Evren Yurtesen <yurtesen@ispro.net.tr> Subject: Re: checking dns records from named.conf Message-ID: <020701c35061$02cb17e0$0e05a8c0@gina> References: <Pine.BSI.4.05L.10307211325580.13779-100000@unix1.sihope.com>
next in thread | previous in thread | raw e-mail | index | archive | help
----- Original Message ----- From: "Adam Maloney" <adamm@sihope.com> To: "Ted Cabeen" <secabeen@pobox.com> Cc: <freebsd-isp@freebsd.org>; "Evren Yurtesen" <yurtesen@ispro.net.tr> Sent: Monday, July 21, 2003 8:27 PM Subject: Re: checking dns records from named.conf > I suppose you could "dig @yourresolver domain.org ns" - and let your > resolver do the recursion. That seems to give me the correct output for a > random .org... > It won't work if you use yourresolver, if it points to yournameserver, because you will only be checking against yourself. I'ts better to use a foreign nameserver, for instance your uplink/isp, or a friendly nameserver somewhere else. I use a perlscript with Big Brother, giving yellow alert when my nameserver disagrees with a foreign nameserver, and I know something is being redelegated. I have a # comment with the date in resolv.conf. Then when the change is finished, I change the # to a // comment. I get a red alert when my nameserver(s) disagrees with the foreign nameserver, and I haven't a # comment, i.e. the change is not supposed to happen. Btw, I _never_ delete a domain from resolv.conf, I just comment it out, with a date and reason, to keep the history somewhere. Another BigBrother script checks if the domains in sendmail.cw, also has the mailserver as lowest MX. Leif
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?020701c35061$02cb17e0$0e05a8c0>