Kresd: local PTR addresses not resolved

dr4Ke · February 18, 2021, 8:30pm

Hi,
I’m using the latest stable release of TurrisOS on a TurrisMOX device.

I’ve put some local hosts in the DHCP static leases and some additional addresses/hosts in the hosts list.

All local hosts are correctly resolved but I can’t get the reverse entries.


; <<>> DiG 9.16.11 <<>> turris.maison.dr4ke.net @192.168.10.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26345
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;turris.maison.dr4ke.net.	IN	A

;; ANSWER SECTION:
turris.maison.dr4ke.net. 5	IN	A	192.168.10.1

;; Query time: 6 msec
;; SERVER: 192.168.10.1#53(192.168.10.1)
;; WHEN: jeu. févr. 18 21:27:10 CET 2021
;; MSG SIZE  rcvd: 68

Reverse:

$ dig -x 192.168.10.1 @192.168.10.1

; <<>> DiG 9.16.11 <<>> -x 192.168.10.1 @192.168.10.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24944
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; QUESTION SECTION:
;1.10.168.192.in-addr.arpa.	IN	PTR

;; AUTHORITY SECTION:
1.10.168.192.in-addr.arpa. 10800 IN	SOA	1.10.168.192.in-addr.arpa. nobody.invalid. 1 3600 1200 604800 10800

;; ADDITIONAL SECTION:
explanation.invalid.	10800	IN	TXT	"Blocking is mandated by standards, see references on https://www.iana.org/assignments/locally-served-dns-zones/locally-served-dns-zones.xhtml"

;; Query time: 3 msec
;; SERVER: 192.168.10.1#53(192.168.10.1)
;; WHEN: jeu. févr. 18 21:26:56 CET 2021
;; MSG SIZE  rcvd: 266

Is this expected?

dr4Ke · February 18, 2021, 8:33pm

My kresd.config file:

--Automatically generated file; DO NOT EDIT
modules = {
    'hints > iterate'
  , 'policy'
  , 'stats'
  , predict = {
        window = 30 -- 30 minutes sampling window
      , period = 24*(60/30) -- track last 24 hours
  }
}
hints.use_nodata(true)
hints.config('/tmp/kresd/hints.tmp')
trust_anchors.remove('.')
trust_anchors.add_file('/etc/root.keys', true)
net.bufsize(1232)
net.ipv4=true
net.ipv6=true
cache.open(20*MB)
table.insert(policy.special_names, { count = 0, cb = policy.all(
policy.TLS_FORWARD(
{{'9.9.9.9'
,hostname='dns.quad9.net'
,ca_file='/etc/ssl/certs/ca-certificates.crt'
},{'149.112.112.112'
,hostname='dns.quad9.net'
,ca_file='/etc/ssl/certs/ca-certificates.crt'
},{'2620:fe::fe'
,hostname='dns.quad9.net'
,ca_file='/etc/ssl/certs/ca-certificates.crt'
},{'2620:fe::9'
,hostname='dns.quad9.net'
,ca_file='/etc/ssl/certs/ca-certificates.crt'
}}))})

The /tmp/kresd/hints.tmp file contains lines like those:

192.168.1.1 box.maison.dr4ke.net
192.168.10.1 turris.maison.dr4ke.net
fdd1:1558:7154:9::1 turris.maison.dr4ke.net

vcunat · February 18, 2021, 8:37pm

See Kresd: Reverse DNS for local addresses

system · March 7, 2021, 11:32am

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.