2012/09/28

DNSSEC can support wild card domain names

I have tested that DNSSEC can support wild card domain names by looking at the status of the AD (Authenticated Data) field.  Here is a snapshot.  Look at the AD field.  My original entry in the name server side is "*.i3way.net  1H IN A 202.81.252.116".

 C:\bind>dig kill123.i3way.net
; <<>> DiG 9.9.1-P2 <<>> kill123.i3way.net
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 5
;; ANSWER SECTION:
kill123.i3way.net.      3600    IN      A       202.81.252.116
C:\bind>dig kill234.i3way.net
;; ANSWER SECTION:
kill234.i3way.net.      3600    IN      A       202.81.252.116
C:\bind>dig kill234.i3way.net
; <<>> DiG 9.9.1-P2 <<>> kill234.i3way.net
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- 12253="12253" font="font" id:="id:" noerror="noerror" opcode:="opcode:" query="query" status:="status:">
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 5
kill234.i3way.net.      3600    IN      A       202.81.252.116
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)