On 7/19/21 8:09 AM, Stephen Satchell wrote:
First, I know this isn't the right place to propose this; need a pointer to where to propose an outlandish idea.
What would the domain names look like? Let's take my current IP/IPv6 assignments from AT&T:
2600:1700:79b0:ddc0::/64 99.65.194.96/29
The IPv6 delegation would be easy:
0.c.d.d.0.b.9.7.0.0.7.1.0.0.6.2.ip6.arpa. NS my-DNS-server-1. 0.c.d.d.0.b.9.7.0.0.7.1.0.0.6.2.ip6.arpa. NS my-DNS-server-2.
Yup, simple, I do this for my customers (and DS records). However that reverse zone has DNSSEC on it. You'd need a DS record to tie my-DNS-server-1. to the ATT DNS server and your server would need to support DNSSEC. ATT may want to enforce DNSSEC on that zone, but not want to sign stuff they can't control. Just playing devils advocate. -- Bryan Fields 727-409-1194 - Voice http://bryanfields.net