Server :: DNS Merge / Intercept Queries From Zone File
Jun 4, 2010
I chose -Server-, if this is more appropriate in -Networking-, just let me know. Basically, I need to be able to merge responses stored in a zone file with responses from an "upstream" authoritative server. I'm in the sad position of needing to "intercept" requests to *part* of a domain (but not restricted to a sub-domain!) and return results for *some* hosts that use an internally routed address, and results for the rest using the public internet addresses. Unfortunately, it's not my domain, so I can't just use views (although I suspect they could end up having some part to play in this, at least potentially)... but instead I have to actually send requests recursing to the other site's external DNS for any hosts my server doesn't have records for in the zone file.
Some background on the situation:
I work at a local government, which has a private link / VPN connection to a state government entity, and needs to use internal addresses for some of the state servers, which then get routed over an "internal" network link. But the state uses the same domain name internally and externally, just presenting views to internal clients vs. external clients. -- However, we are only being allowed access to certain of their servers through the internal link, which means that for any other servers that we don't have internal/private access for, we have to visit the public addresses just like anyone else on the internet... So, I can't just send all requests to their internal DNS and get responses, because we'd get IPs for some servers (e.g. their main web site) that we wouldn't then be able to reach using the internal network link.
For Example: Say I have a client machine, "client1", on my network ("my.net"), which uses "mydns1.my.net" for name resolution ... and which needs to access 2 servers on the state network, "private.st.us" and "public.st.us" -- so named based on how "my.net" needs to access them.
The external state DNS server/view ("ext-dns.st.us") responds to requests with something like:
private.st.us -- 1.2.3.456
public.st.us -- 1.2.3.457
(Those are just crap addresses, obviously.
The internal state DNS server/view ("int-dns.st.us") responds to requests with something like:
private.st.us -- 10.0.0.8
public.st.us -- 10.0.0.10
This works on their network because their own clients have access to all such IPs.
But for us, they only allow traffic flowing between "my.net" and their internal network to reach the 10.0.0.8 address, blocking all other address destinations. So, when "client1.my.net" asks "mydns1.my.net" for the address of "public.st.us", I need "mydns1" to recurse out to "ext-dns.st.us" to get an answer (1.2.3.457) and then return that IP to "client1" -- because "my.net" is blocked from accessing the server's 10.0.0.10 address. But, when client1 asks mydns1 for "private.st.us" I need to pull the IP (10.0.0.8) from a local zone file instead of asking either of the state DNS servers -- or optionally forward the request to "int-dns.st.us" I suppose -- because the state blocks access to certain services (which we need and are the whole cause of this problem!) via the public (1.2.3.456) address.
I am no expert when it comes to BIND. I seem to be able to resolve NS and A and TXT records for my domain, but I cannot get the MX records to come out. Does anyone have an idea what might be wrong with my BIND zone file? I wonder if it might have something to do with the fact that my IP is currently on a policy Block List?
I want to compare zone file counting and same name, not records etc of master and slave dns server so that i sure both server contains same copy of the files at a time. Any utility to compare such files in linux?
I just ordered a new unmanagd VPS I have already Apache, PHP and Mysql the only problem I have now is how to create a A,NS and MX record in CentOS. I dont know where the DNS zone file is in CentoS
I have installed a centos 5.4 server with Bind services running on the 2 servers.but getiing error "the working directory is not writable". while restarting the named services.
Now I have a problem with mencoder.When I tried to use mencoder to interpret a mp3 file (test.mp3) from 1:30 to the end like this :mencoder -o out.mp3 -oac mp3lame -lameopts cbr:br=128 -of rawaudio -ss 1:30 test.mp3I found it failed:ASF file format detected.asfheader]audio stream found, -aid 1Video stream is mandatory!Exiting.
I install a Bind 9 with chroot in Centos 5, but the issue is the Reverse Name Resolution Zone File didn't create by default like other zone files, so i look into /var/named directory i don't find the reverse name resolution zone file even if i add this zone on named.conf
zone "1.168.192.in-addr.arpa" IN { type master; file "1.168.192.testsip.com.zone"; allow-update { key "rndckey"; }; notify yes; };
My question is about DNS use of the $TTL directive. I realize the $TTL directive stands for TimeToLive, my question is why would you specify different TTLs in the zone file? I have a zone file with
$TTL 300 machine machine machine TTL 3600
[code]....
I'm not sure why you just wouldn't specify the same TTL for all systems or at least not have all the 300's grouped together and all 3600s grouped together. The file I'm looking at has about 12 different groups of 300 and 3600 TTLs.
I am using ffmpeg for merge wav files to a mov video. My doing is below
1. First extract audio (wav file) from video 2. Create wav file from mp3 track 1 3. Create wav file from mp3 track 2 4 Merge extract audio from video with track 1 and track2. Now finally create a new video with original video's video stream and merged audio stream.
Process is working. However final video is 3-4 times greater than original one. I want that final video should be near about size of original video. As I understand, all three wav files (created from ) make video larger.
I am currently running the latest version of Bind, and for some completely unknown reason I can NOT get queries to work for PTR records. All queries to the servers for reverse name lookup get query denied:
Using domain server: Name: 66.150.173.1 Address: 66.150.173.1#53 Aliases:
Host 27.173.150.66.in-addr.arpa not found: 5(REFUSED)
And it shows in my logs:
I am at my wits ends with the piece of crap. Can anyone shine some light on why this damn Bind install won't respond to these queries?
I have internal-only email server that has internal BIND9 running. Thought it only has its IP address defined in /etc/resolv.conf, it is still resolving outside addresses.
How often are dns queries sent? Assume I want to connect to a ssh server, will I send one dns-query in order to do that or do I send multiple during my connection? What if I request web-pages, do I send a query only when I enter a site or will I send queries every time I visit a new page on that site?
I'm asking since I'm considering getting an account at dyn.com (the standard account for $30/yr) and it comes with 600 000 queries per month (which is way more than I expect to get but knowing exactly what it means is always good).
Is there a way to run queries against a Microsoft sql server from linux? Here is what I would like to do. When I create apps that us db back end I would like to quickly check results of my queries. so if I could do something like "select * form Orders" from the terminal or another app that would be great.
I have my bind9 DNS server running on Ubuntu with logging on. What's bothering me is that I have log full of localhost queries instead of from IP of the computer which actually asked.DNS queries log:/var/log/named.queries.log
Code: 24-Feb-2011 16:01:19.413 client 127.0.0.1#38022: query: clients4.google.com IN A + (127.0.0.1)
trying to configure a Centos 5.5 server (simple file server with DHCP and DNS relay). I configured and tested the config (by 'service dnsmasq configtest') of dnsmasq and I got the message 'dnsdomain:host unknown (translation of the real message : hte inconnu) and I didn't find where I could define this host ! The hostname of the server is well defined and I can see it from all Windows PC's on the LAN. dnsmasq starts (with hte same message as in configtest) but when querying DNS from PC's te.g. trying to surf the Internet), I don't get replies (3 DNS servers are also well defined and operational).
I am bit new to Linux and have setup caching-only name server with Centos 5.5. when i do dig server, it provide resolutions. but when i use the server IP as DNS on my windows client, it says, "connection refused" on the NSlookup output. (IP table didn't enable) My server Ip is 192.168.1.253 and bellow is the configuration of "/var/named/chroot/etc/named.conf"
The NS triggering the warning is running openSUSE 10.2 and the other one 11.1. Both configuration files /etc/named.conf are equivalent (well, forwarders are different). There is no such warning for the NS with 11.1. When I add "recursion no;" to the options in /etc/named.conf the warning goes away, but FF or SeaMonkey running on the server no longer get their DNS requests resolved.
I recently turned on query logging on our name server and immediately saw repeated queries for . (dot). I've not seen this before. It looks like a really sloppy DOS. What would this return if my NS was misconfigured?
May 13 18:11:41.710 queries: info: client 91.202.63.129#56089: query: . IN NS May 13 18:11:42.083 queries: info: client 91.202.63.129#62826: query: . IN NS May 13 18:11:42.788 queries: info: client 91.202.63.129#13620: query: . IN NS
have 6680 wav files with about 500kb size in a folder and i want to merge all of them.the size of the files altogether is 1.5GB. how i can merge them and compress them to create a mp3 or ogg file?
I am wanting assistance with getting Zoneminder working under ubuntu 11.04.I have ran the install and setup the settings via http://ipaddress/zmadded the camera re instructions.I cannot view anything via Zone Minder.Cam is a Logitech Pro 5000
How does Debian preserve/merge config file information during software upgrades? My google searches left me a little unclear on this point. Also (if you happen to know) does Ubuntu use the same method?
The thing is, I've created a new local zone here (called "local.lan"), and, aparently, it is working fine, and DHCP3-SERVER is updating DNS info through the controls.But sometimes I get some strange answers from the server, like when I do the "arp" command in one of the clients, and get the server's hostname "mixed" with it's own reverse, like this: "dns.local.lan.2.168. | ether | 00:02:1e:f5:61:74 | C | eth0". Other thing is that sometimes my DNS don't update when a computer "enters" the lan. In the /var/log/syslog the DHCPOFFER appears, but the information about the DNS update isn't there.So, I would like to show you my named.conf file and my local zone db file, and get some feedback from you (what would you change... what is wrong...).
