Don’t talk to the prisoner

I know that it sounds like a bad line from a movie, but it is really a valid point in computing too. So which prisoner am I speaking of? Lets see if you can guess, so your options are:

  • The Beagle Boys, you know from Donald Duck.
  •, one of the servers that blackholes bad DNS queries.
  • Al Capone, the famous gangster.
  • Aung San Suu Kyi, political prisoner of Burma.

Well even if I think most of these prisoners are interesting today my plan is to write about

Why and how we can avoid it. and its buddies and does answer questions about RFC1918 reverse lookups that get out in the wild. So what is RFC1918, well that request for comments specifies which IPv4 addresses are allowed for private use. These addresses are used by countless companies and homes. So the reverse of a these addresses should never be sent outside of your company and home, else or it buddies will answer.

So what reverse zones should I have in my DNS to be a good net user? There is a RFC called 6303 which specifies which reverse zones one should make sure to have:

RFC1918 reverse zones

[table “” not found /]

Some bonuses that you should also have:

[table “” not found /]

IPv6 reverse zones that you should consider:

[table “” not found /]

So by creating these zone you can help lower the hits on the and get a faster and more stable DNS environment.

Leave a Reply