33.7. Managing Reverse DNS Zones
A reverse DNS zone can be identified in the following two ways:
- By the zone name, in the format
reverse_ipv6_address.ip6.arpa.The reverse IP address is created by reversing the order of the components of the IP address. For example, if the IPv4 network is
192.0.2.0/24, the reverse zone name is
2.0.192.in-addr.arpa.(with the trailing period).
- By the network address, in the format
network_ip_address/subnet_mask_bit_countTo create the reverse zone by its IP network, set the network information to the (forward-style) IP address, with the subnet mask bit count. The bit count must be a multiple of eight for IPv4 addresses or a multiple of four for IPv6 addresses.
Adding a Reverse DNS Zone in the Web UI
- Open the Network Services tab, and select the DNS subtab, followed by the DNS Zones section.
Figure 33.30. DNS Zone Management
- Click Add at the top of the list of all zones.
Figure 33.31. Adding a Reverse DNS Zone
- Fill in the zone name or the reverse zone IP network.
- For example, to add a reverse DNS zone by the zone name:
Figure 33.32. Creating a Reverse Zone by Name
- Alternatively, to add a reverse DNS zone by the reverse zone IP network:
Figure 33.33. Creating a Reverse Zone by IP NetworkThe validator for the Reverse zone IP network field warns you about an invalid network address during typing. The warning will disappear once you enter the full network address.
- Click Add to confirm the new reverse zone.
Adding a Reverse DNS Zone from the Command Line
To create a reverse DNS zone from the command line, use the ipa dnszone-add command.
For example, to create the reverse zone by the zone name:
[user@server]$ ipa dnszone-add 2.0.192.in-addr.arpa.
Alternatively, to create the reverse zone by the IP network:
[user@server ~]$ ipa dnszone-add --name-from-ip=192.0.2.0/24
Other Management Operations for Reverse DNS Zones
Section 33.4, “Managing Master DNS Zones” describes other zone management operations, some of which are also applicable to reverse DNS zone management, such as editing or disabling and enabling DNS zones.