From owner-freebsd-questions Wed Feb 12 2:17:16 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 01B2637B401 for ; Wed, 12 Feb 2003 02:17:15 -0800 (PST) Received: from ra.dweebsoft.com (ra.dweebsoft.com [209.237.40.34]) by mx1.FreeBSD.org (Postfix) with ESMTP id 722B443FAF for ; Wed, 12 Feb 2003 02:17:14 -0800 (PST) (envelope-from daxbert_news@dweebsoft.com) Received: from daxhome (anubis.dweebsoft.com [64.81.58.36]) by ra.dweebsoft.com (8.12.6/8.12.3) with SMTP id h1CAHD47033444; Wed, 12 Feb 2003 02:17:14 -0800 (PST) (envelope-from daxbert_news@dweebsoft.com) Message-ID: <02a401c2d27f$e9640140$0a0aa8c0@dweebsoft.com> From: "Daxbert" To: "Bjarne Wichmann Petersen" , References: <200302121029.14713.freebsd.nospam@mekanix.dk> <200302121109.33305.kde.nospam@mekanix.dk> Subject: Re: Resolving or blocking eg. doubleclick.net? Date: Wed, 12 Feb 2003 02:17:13 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4920.2300 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4920.2300 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > On Wednesday 12 February 2003 10:43, Frank Tegtmeyer wrote: > > > > 3) Since I'm only aiming for a dns-cache I'm right in assuming I should > > > keep my hands away from all the zone-stuff? > > Much better: follow the instructions in > > http://cr.yp.to/djbdns/install.html and > > http://cr.yp.to/djbdns/run-cache.html > > and then forget any dns- and dns related security problems. > > Tried it, but really got confused trying to install it. Ended up having a > service dir created all over my system. Never got it to work. > > But looks like I got bind working (my firewall blocked quiries), but it > doesn't look like a dnscache is solving my problem. *Still* takes forever for > my box to resolve eg. doubleclick.net. This is *REALLY* getting on my nerves > to sit and wait ½-5 minutes for a page to load because some unresolvable > server is blocking. > > Anyone know how to solve this issue? > > And where *does* named/bind store it's cache-data? > > Bjarne One option... cheat Make your dns server authoritative for doubleclick.net, and have no entries (or optionally your own web server as an * entry) in the zone file. named stores it's cache in memory. You can get a dump of the current cache.. don't remember the exact syntax but it's in the man page. --daxbert To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message