This Morning ns1.unila.ac.id already setup and support with IPv6, prefix address assign from Tunnel broker. Read carefully if you want to have your own BSD name server that support IPv6
Assumptions :
Everyone knows / has little knowledge on how to configure the IPv4 DNS
Important Terms
- A – address record maps a host name to 32-bit IPv4 address (Forward lookup)
- AAAA – address record maps a host name to 128-bit IPv6 address (Forward lookup)
- ip6.arpa – Reverse mapping name space for IPv6
- ip6.int – Reverse mapping name space which has been deprecated but still maintained by some hosts
Forward Lookup (AAAA)
- Uses AAAA records for assign IPv6 addresses to names.
- Multiple addresses possible for any given name – for example, in a multi-homed situation.
- Can assign A records and AAAA records to a given name/domain.
- Can also assign separate domains for IPv6 and IPv4.
- Don’t be afraid to experiment!
Sample config for NS Database Zone
$TTL 3600
@ IN SOA ns1.unila.ac.id. admin.unila.ac.id. (
2008080590 ; serial
3600 ; Refresh
900 ; Retry
3600000 ; Expire
3600 ) ; Minimum
IN NS ns1.unila.ac.id.
IN NS ns2.unila.ac.id.
IN NS ns3.unila.ac.id.
IN MX 300 ns1.unila.ac.id.
IN A 222.124.196.101
IN MX 200 mailgate.unila.ac.id.
IN AAAA 2001:470:23:cc::2ns1 IN A 222.124.196.98
IN MX 300 mailgate.unila.ac.id.
IN AAAA 2001:470:23:cc::2
ns2 IN A 222.124.196.99
IN MX 300 mailgate.unila.ac.id.ns3 IN A 222.124.196.100
IN MX 300 mailgate.unila.ac.id.
Reverse lookup (ip6.arpa)
- Reverses should be put in for both ip6.int and ip6.arpa domains.
- The ip6.int domains has been deprecated, but some hosts still use them.
- Can use same file for both – use the @ notation and point to the same file in the named.conf file.
Sample configuration file (named.conf)
// named.conf (use your favorite naming scheme)
zone “unila.ac.id” {
type mater;
file “master/unilagituloh”;
}
zone “0.0.0.0.0.0.1.0.8.6.4.0.1.0.0.2.ip6.int” {
type master;
file “master/0.0.0.0.0.0.1.0.8.6.4.0.1.0.0.2.rev”;
};
zone “0.0.0.0.0.0.1.0.8.6.4.0.1.0.0.2.ip6.arpa” {
type master;
file “master/0.0.0.0.0.0.1.0.8.6.4.0.1.0.0.2.rev”;
};
Finished…… Finally you just have to test, that our new entry IPv6 Record already discovered from internet, using dig command
ns1# dig @ns5.speedcast.com www.unila.ac.id AAAA
; <<>> DiG 9.3.2-P1 <<>> @ns5.speedcast.com www.unila.ac.id AAAA
; (1 server found)
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62499
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 3;; QUESTION SECTION:
;www.unila.ac.id. IN AAAA;; ANSWER SECTION:
www.unila.ac.id. 1897 IN AAAA 2001:470:23:cc::2;; AUTHORITY SECTION:
unila.ac.id. 5963 IN NS ns3.unila.ac.id.
unila.ac.id. 5963 IN NS ns1.unila.ac.id.
unila.ac.id. 5963 IN NS ns4.unila.ac.id.
unila.ac.id. 5963 IN NS ns2.unila.ac.id.;; ADDITIONAL SECTION:
ns1.unila.ac.id. 1884 IN A 222.124.196.98
ns2.unila.ac.id. 1884 IN A 222.124.196.99
ns3.unila.ac.id. 1884 IN A 222.124.196.100;; Query time: 141 msec
;; SERVER: 202.174.158.10#53(202.174.158.10)
;; WHEN: Thu Dec 10 08:55:08 2009
;; MSG SIZE rcvd: 181ns1#
But we still have problem in here. how can we delegate aout reverse DNS from Tunnel Broker NS….. hahaha… we should be contact and request For PTR address Record.
ns1# dig @ns5.speedcast.com 2001:470:23:cc::2
; <<>> DiG 9.3.2-P1 <<>> @ns5.speedcast.com 2001:470:23:cc::2
; (1 server found)
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21951
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;2001:470:23:cc::2. IN A
;; AUTHORITY SECTION:
. 10800 IN SOA A.ROOT-SERVERS.NET. NSTLD.VERISIGN-GRS.COM. 2009120901 1800 900 604800 86400
;; Query time: 204 msec
;; SERVER: 202.174.158.10#53(202.174.158.10)
;; WHEN: Thu Dec 10 08:58:12 2009
;; MSG SIZE rcvd: 110
ns1#