From: Paul Sladen (vserver_at_paul.sladen.org)
Date: Mon 19 Aug 2002 - 14:28:13 BST
On Mon, 19 Aug 2002, Roderick A. Anderson wrote:
> @ IN MX 5 mail.rimrocksoftware.com.
> mail IN CNAME rimrock.rimrocksoftware.com.
> rimrock IN A 216.64.180.232
@ IN MX 5 -> CNAME -> CNAME -> IN A 216.64.180.232
RPC974 explicitly states that MX records SHALL NOT point to an alias
defined by a CNAME. (ie, an MX must point straight to a A record).
> @ IN SOA rimrock.rimrocksoftware.com. raanders.main.cyber-office.net. (
> @ IN NS ns2.asisna.com.
> @ IN NS ns1.asisna.com.
Also in the above, you've said that "rimrock.rimrocksoftware.com" is the SOA
nameserver; yet list ns{1,2}.asisna.com as the nameservers for the domains
within the zonefile and .com TLD zone and the allow-transfer statement does
not allow transfers out to ns2.asisna.com (216.64.180.11).
Is rimrock even running a DNS server? (firewalled from me perhaps?).
> 15 ; retry
15 /seconds/ is a *very* low retry value in the SOA!!
Lets clean this up: you should find it /harder/ to shoot yourself in the
foot with the following (no CNAMEs in sight!):
$ORIGIN rimrocksoftware.com.
$TTL 1H
@ IN SOA rimrock raanders.main.cyber-office.net (
2002081802 ; Serial
1H ; Refresh
15M ; Retry
2W ; Expire
3H ) ; Minimum (fail timeout)
IN NS ns1.asisna.com.
IN NS ns2.asisna.com.
IN MX 5 mail ; rimrock
IN A 216.64.180.226 ; main.cyber-office.net.
www IN A 216.64.180.226 ; main.cyber-office.net.
rimrock IN A 216.64.180.232
mail IN A 216.64.180.232 ; rimrock
;--</zonefile>
or *better still*, cut out any mention of `mail' and just put:
@ IN MX 5 rimrock
-Paul
-- Nottingham, GB