Reverse DNS zones. What is preferable?

R

Roman Molchanov2021-04-08 14:35:02

Domain Name System

Roman Molchanov, 2021-04-08 14:35:02

Good afternoon.
I took care of creating reverse zones on the DNS server, I can not decide on the options. Make one common zone for the entire corporate subnet 10.1.0.0/16 or create a separate zone for each /24 subnet (10.1.1.0/24, 10.1.2.0/24, 10.1.3.0/24).
Are there any fundamental differences in these two schemes? The only difference I see is that there is no need to create a separate zone for each subnet. What are the downsides to this approach?

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

A

Alexey Dmitriev, 2021-04-08
@Dobryak88

You need to divide into small ones only if you plan to place them in different places without replicating with each other.
If the DNS server is one-2-3 and the zones will be stored at all, it makes sense to create one zone 1.10.in-addr.arpa

V

Vladimir Korotenko, 2021-04-08
@firedragon

700 addresses in one zone is not good. It is better to divide by 3 at the same time it will be possible to reduce the interval in one of them. I would generally use masks 27 or 26 by the number of ports on the switch

A

Alex Rodridez, 2021-04-11
@alexDXB

Always segmentation is better. I try to divide both direct and reverse by / 24. The most correct decision from the point of view of administration, as for me.

Big zone updates

so just update changes? is not it so?

I would generally use masks 27 or 26 by the number of ports on the switch

)) and if a person has a port on a switch in the trunk and accepts 1000 MAC/VLAN each? or behind this switch there are 5 more switches? strange division by the number of ports.