Date: Sun, 27 Jun 1999 16:49:02 -0400 From: Christopher Michaels <ChrisMic@clientlogic.com> To: 'notme' <notme@lvdi.net> Cc: freebsd-questions@freebsd.org Subject: RE: ppp re-dial after timeout Message-ID: <6C37EE640B78D2118D2F00A0C90FCB4401105A15@site2s1>
next in thread | raw e-mail | index | archive | help
The only way to find out if it's going to help is to use a filter on port 53. If your problem stops then that is what is causing the dialup. I also suggest completely blocking ports 137-139, these are netbios ports and unless under rare circumstances shouldn't be openly available to the internet. If the machines on your lan are trying to get name resolution on your private ip addresses, they are still going to want to look to the isp's DNS server. I would setup a DNS that at the very least, was a caching DNS server, it would then just refer all requests to the ISPs DNS server. If it turns out that local lookups are the problem, you could setup a server to reply to internal requests as well. I'm sure you've made up some host names. The other thing to consider is, do you have a hosts file on all of the machines on your network? This would also prevent DNS lookups (theoretically). I personally find it easier to maintain one dns server, as opposed to multiple hosts files. :) -Chris Oh.. keep in mind that I may be barking up the wrong tree completely. It may not be DNS that's triggering it. Setup that filter and you will know for sure. > -----Original Message----- > From: notme [SMTP:notme@lvdi.net] > Sent: Sunday, June 27, 1999 3:10 AM > To: Christopher Michaels > Cc: freebsd-questions@freebsd.org > Subject: Re: ppp re-dial after timeout > > I'm currently using my ISP's DNS. But would creating a mini DNS > on my server help though? If so, does this DNS suppose to resolve > only the LAN, or names outside of my local area network? > > Thanks in advance! > > Frankie > Christopher Michaels wrote: > > > Do you have a local DNS server setup on the FreeBSD machine or are you > using > > the ISP's DNS? Lookups could be triggering the dialups. > > > > Also, the filter commands have changed slightly since the primer was > > written. I noticed this the hard way. Take a look in the ppp man page, > I'd > > just tell you the syntax, but I'm at work right now not in front of the > > machine, and I just can't remember exactly what it is. > > > > I would setup a dial filter for TCP/UDP on port 53 and see if that > helps. > > > > -Chris > > > > > -----Original Message----- > > > From: notme [SMTP:notme@lvdi.net] > > > Sent: Saturday, June 26, 1999 5:59 PM > > > To: freebsd-questions@freebsd.org > > > Subject: ppp re-dial after timeout > > > > > > Hi, > > > I have just setup my FreeBSD server as a gateway > > > according to FreeBSD.org's ppp primer. It works fine > > > and all, except for some strange reason, everytime when > > > it timeouts (after 300 sec, or 5 min), it automatically > > > redials--even if I didn't access the net. Furthermore, > > > when I try to access the local network, it dials for me also. > > > (i.e. just telneting to the FreeBSD server itself.) > > > > > > I also tried using a filter, (from the PPP in FreeBSD handbook), > > > but PPP told me that it failed to load the filter. > > > > > > > > > here's my network toplogy > > > > > > ISP<-------->(dialup to ISP)->FreeBSD-gw<---->(ethernet 208.129.55.1) > > > > > > | > > > > > > | > > > > > > ____|________ > > > > > > | | > > > > > > Win98(208.129.55.2) Win98(208.129.55.3) > > > > > > > > > > > > > > > Any suggestion would be appreciated! > > > > > > > > > Frankie > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-questions" in the body of the message > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6C37EE640B78D2118D2F00A0C90FCB4401105A15>