Join Log in
Score:0
MissionControlFreak avatar Server

Private IP being used in public DNS

tc flag
MissionControlFreak

I recently was working on a problem for a user at work. The basic problem was they had a bank scanner that connects directly to the bank but it wasnt working on our network.

The domain name was usb.rdmscanners.net when I tried to resolve this in our domain I wasn't able to but I tried externally and was met with 192.168.253.1 bear in mind this is using Oracle’s public DNS

The issue has been fixed on our end but why on earth would a private IP be allowed to be registered for public use?

Am I missing something here? I remembered reading about changes to the IP addressing schema somewhere but I cant remember where… thanks in advance

125
1 + 3
ip
cn flag
Greg Askew
We aren't going to know the answer. Contact the domain owner. There's nothing to prevent a private IP address to be registered for a name in DNS.
1
Reply
HBruijn avatar
in flag
HBruijn
https://serverfault.com/questions/4458/ has some interesting answers, comments and opinions as well.
1
Reply
Paul avatar
cn flag
Paul
Does this answer your question? [Private IP address in public DNS](https://serverfault.com/questions/4458/private-ip-address-in-public-dns)
0
Reply
Score:7
HBruijn avatar Server
in flag
HBruijn

why on earth would a private IP be allowed to be registered for public use?

There is absolutely no technical requirement, RFC or IETF Internet Standard or anything that requires that any public DNS record must only resolve to publicly accessible resources.

For example RFC 1537 even states:

Note that all domains that contain hosts should have a "localhost" A record in them.

So a localhost.example.com. IN A 127.0.0.1 record is fairly common to see and 127.0.0.1 is the epitome of private IP's.

It is perfectly valid to have public DNS records that resolve to restricted access resources, to resources that are powered off, offline and/or resources that reside in an internal network. That internal network may even use RFC 1918 private use IPv4 addresses.

For larger organisations, that have an internal DNS server, populating their public DNS zone with records for resources in their internal network is usually avoided and often considered "leaking information about the layout of the internal network" and a security risk.

But for a small business or a home office without an internal DNS server, setting up printer.office.example.com IN A 192.0.2.22 in their public DNS can make life easier for everybody in that office.

+ 0
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.