From owner-freebsd-questions  Fri Jan  5  8: 3:26 2001
From owner-freebsd-questions@FreeBSD.ORG  Fri Jan  5 08:03:24 2001
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from smtp.kka.com (smtp.kka.com [63.141.65.2])
	by hub.freebsd.org (Postfix) with ESMTP id 33E9B37B400
	for <freebsd-questions@freebsd.org>; Fri,  5 Jan 2001 08:03:24 -0800 (PST)
Subject: Re: Using BIND in a local, bogus network
To: Keith Walker <kew@icehouse.net>
Cc: freebsd-questions@freebsd.org
X-Mailer: Lotus Notes Release 5.0.2a  November 23, 1999
Message-ID: <OF248BFA6A.5DDA5318-ON862569CB.00577B0F@kka.com>
From: Eric_Stanfield@kenokozie.com
Date: Fri, 5 Jan 2001 09:57:57 -0600
X-MIMETrack: Serialize by Router on Notes1st/Keno(Release 5.0.4 |June 8, 2000) at 01/05/2001
 09:57:59 AM
MIME-Version: 1.0
Content-type: text/plain; charset=us-ascii
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


What exactly is your nameserver looking for when it's causing these
dial-ups?  Is it calling the internic root-servers, doing axfr's from some
other host, etc....?  Got a snippet of a sniffer log you could post?

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

Eric Stanfield, K2Access
Keno Kozie and Associates
222 N LaSalle #1500
Chicago, IL 60606
(312) 332-3000




                                                                                                                               
                    Keith Walker                                                                                               
                    <kew@icehouse.net>               To:     Nick Slager <nicks@albury.net.au>                                 
                    Sent by:                         cc:     freebsd-questions@FreeBSD.ORG                                     
                    owner-freebsd-questions@F        Subject:     Re: Using BIND in a local, bogus network                     
                    reeBSD.ORG                                                                                                 
                                                                                                                               
                                                                                                                               
                    01/05/01 09:58 AM                                                                                          
                                                                                                                               
                                                                                                                               



On Thursday 04 January 2001 10:07 pm, Nick Slager wrote:
> Thus spake Keith Walker (kew@icehouse.net):
> > In my perfect world, the firewall would have a named running that would
> > be a domain master for the bogus network, would cache "real" addresses,
> > and just generally, DTRT.
> >
> > I've had *some* success with this, but I cannot get the nameserver to
> > quit forcing dial-outs, keeping the modem connected almost 24/7.
>
> You might want to look into userland PPP's filters to stop the auto dial
> on DNS lookups. Have a look at the examples in /usr/share/examples/ppp.
>

I thought about that, but wouldn't that pretty much kill the name lookups?
I
mean, if a name wasn't cached, then the lookup by named wouldn't unless the

modem-link was already established since ppp wouldn't auto-dial out on a 53

packet. Or did I miss something here?

--
Keith Walker
kew@icehouse.net
PGP Key: http://www.icehouse.net/kew/public-key.pgp


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message






To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message