On Tue, Apr 10, 2001 at 12:55:34PM +0100 or so it is rumoured hereabouts,
Glen Gray thought:
> Would that not effectively kill typing a URL into the web browser to
> bring up the net point of this ???
No, that works fine. I think what I blocked was dns to dns as trigger but
a URL in a browser does a something else to dns query or something like
that. I'm running a caching nameserver for the HAN which has been told
about the ISP's nameservers and the root nameservers. If it fails on a
lookup itself it reroutes the request to one of the root servers or
something (I was never quite clear on exactly hopw this works.
OTOH, it might be the netbios rules that need modification. These are for
ports 137,138,139 which are the doze file and print sharing stuff. My
rules include:
# Do the same for netbios-ns broadcasts
# NOTE: your /etc/services file may not define the netbios-ns service
# in which case you should comment out the next three lines.
#ignore udp udp.source=udp.netbios-ns,udp.dest=udp.netbios-ns
#accept udp 30 udp.dest=udp.netbios-ns
#accept udp 30 udp.source=udp.netbios-ns
but they're all remarked out so I'm not sure. The only other thing I have
changed myself is a rule for dns to dns. Contrary to what I said above,
it turns out that I have *enabled* dns to dns as a trigger for diald.
# Don't bring up on domain name requests between two running nameds.
#ignore udp udp.dest=udp.domain,udp.source=udp.domain
accept udp 10 udp.dest=udp.domain,udp.source=udp.domain
This is useful since I'm running a nameserver on the HAN.
I'm confused now!
Conor
> The main problem I have with the setup is the DNS server syncing with
> various servers. I don't know too much about DNS and haven't looked into
> it yet (I just leave the modem powered off during the day). It should be
> noted that you can tell diald what times it's allowed dial out. So you
> could tell it that it can only dial out when your providers charges are
> on evening and weekend rates.
I have told it how long a peak time impulse is and similarly how long an
off-peak impulse so it knows how long it should stay connected for any
particular call.
>> Glen
>> On 10 Apr 2001 12:46:13 +0100, Conor Daly wrote:
> > I ended up disabling dns requests as trigger which effectively kept the
> > doze machine behind bars
> >
--
Conor Daly <conor.daly at oceanfree.net>
Domestic Sysadmin :-)
---------------------
Faenor.cod.ie
4:08pm up 42 days, 1:43, 0 users, load average: 0.16, 0.10, 0.05
Hobbiton.cod.ie
3:25pm up 42 days, 35 min, 3 users, load average: 0.12, 0.15, 0.08
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
