I am using RHEL5. These are my config files:
Code:
options {
listen-on port 53 { 127.0.0.1; 192.168.14.54; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
[code]....
I'm at a loss to why my reverse lookup zone doesn't work for me.I've got two views. One internal and one external. My domain is isp2.datornatverk.se. Public IP: 130.240.133.81.
dig -x @8.8.8.8 130.240.133.81
gives me:
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2917
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
I've set it up so that the internal subnets gets the domains resolved to the internal IP-addresses. When querying from external addresses I will get public IP.My named.conf.local file:
Code:
acl internals {
127.0.0.0/8;[code]..........
I don't know whether the views has messed something up. It worked before I added the views.
how to configure reverse zone for x.x.x.x/18 subnet ,all the example on the internet are for /24 or /16 subnets?
View 9 Replies View RelatedI've run into a strange issue with a DHCP/DDNS setup whereby when the DHCP server asks the DNS server to add a new host, the forward map is added correctly but the reverse map has the subdomain added twice (e.g. 192.168.25.192.168.25.250)I'm running ISC DHCPd version 3.0.1 and BIND version 9.2.3 on SuSE 9.2 - 32bit.Here is my dhcpd.conf file:
# dhcpd.conf
authoritative;
include "/etc/named.keys";
[code]....
I install a Bind 9 with chroot in Centos 5, but the issue is the Reverse Name Resolution Zone File didn't create by default like other zone files, so i look into /var/named directory i don't find the reverse name resolution zone file even if i add this zone on named.conf
zone "1.168.192.in-addr.arpa" IN {
type master;
file "1.168.192.testsip.com.zone";
allow-update { key "rndckey"; };
notify yes;
};
Reverse dns lookup in C?
View 3 Replies View RelatedI have the following bind9 configuration, and I'm trying to resolve reverse lookup IP address to name.
$ttl 38400
mydomain.org.INSOAmyhosting.com. (
1243281304
10800
[code]...
** server can't find 1.2.3.4.in-addr.arpa: NXDOMAIN
Is my PTR wrong, or what do I need to have the reverse lookup working ?
Note: I replace real IP by 1.2.3.4, same for my domain name.
I have a file consisting of unique IP addresses - one per line I want to find the name of the host for each address. I tried the following:
Quote:
nslookup < file_name
This worked except it gives me a lot of extraneous information such as the servers providing the answers. This is too much information for me and would simply like each line of IP numbers to be replaced with a domain name. I tried using the same strategy using host and hostname and dig but I must have given the wrong command as I had no results.
I've got 2 domains:
[URL]
This is how I've configured my resolv.conf file:
[URL]
When I run the host command, it can resolve machines in one.domain.com using both hostname and ipaddress. But when I run the host command for machines in two.domain.com, it only works for hostnames but not ip addresses. The result for ip addresses is:
Host 100.3.2.1.in-addr.arpa not found: 3(NXDOMAIN)
Why doesn't it try the 2nd nameserver in the resolv.conf file when resolving by ip adddress? Reverse pointers are configured for each machine in their respective domain dns servers. O/S is Oracle VM Server 2.2.1 (similar to Red Hat). Kernel is 2.6.18-128.2.1.4.37.el5xen.
Like many others I'm running into some reverse lookup issues with SSH. Setup is as follows:
localnet setup
myserver - 192.168.0.x
myworkstation - 192.168.0.y
[Code].....
nslookup tests show that my reverse lookup is functioning correctly. However, if I use "myworkstation" to connect to myserver.mydomain.com using an external nameserver SSH says: "Address 84.162.xx.yy maps to myserver.mydomain.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!"
On myserver the /etc/hosts has the internal address for the server which seems the normal way to go to me. Changing this to the servers external address solves the issue.
Apparently a connection originating from myworkstation arrives from/with my external address, and when its reverse is checked by the server it apparently finds its own internal address for that name in /etc/hosts before doing a nameserver query and thus concludes that internaladdress <> externaladdress which gives the error.
Is there any way to have the server check external DNS before /etc/hosts? Another solution would probably be running an internal DNS, so myworkstation doesn't connect through the 'outside'.
I've configured my dhcp server to update dynamically the DNS zones of BIND9 name server. Everything works ok, except for reverse nslookup:
nslookup 10.141.50.3
Server:127.0.0.1
Address:127.0.0.1#53
[code]....
I am going barking mad with this - I have forward mapping working fine, but my system simply refused to add in the reverse mapping.Anyway can someone with a clearer head and more knowledge have a look at my configs and see if they can point me in the right direction.I've setup the keys and permissions and they seem to be working, local UNIX file permissions are named.named and even 777Nothing seems to create reverse mappings - no PTR records etc.Weird (I am 99% there to blowing my stack and giving up after 4 days of buggering around).
(A) my dhcpd.conf
==============
authoritative;
[code]....
The scenario: We have an external server that runs HTTP/DB servers for out shop system. Then, there's our local, in-house infrastructure that runs a.. yeah... Exchange 2010. The shop system on the external server needs to send mails to customers (order confirmations, invoices, etc.). seing as sending them directly through the local MTA (Postfix) would cause mail delivery problems because of reverse DNS issues, i've set the Postfix MTA to act as a satellite to our in-house Exchange Server, so the Exchange sends the mail instead, giving recipient mail servers a valid reverse DNS lookup.
Now, mails sent by the (proprietary, uneditable) shop system are relayed correctly and sent to the target e-mail address. My problem is: Mails not sent by the shop system, but by our own PHP scripts which run on that same external servers, are NOT relayed properly. So the Exchange is fine with the mails sent by the shop system, but not the mails sent by our scripts. This is what i get in the mail.log: The successfully relayed mail sent by the shop system:
[Code]....
I got this message on Friday from just one domain. uote:mailsrv.forthnet.gr #<mailsrv.forthnet.gr #5.5.0 smtp; 554 5.5.0 Your message was considered to be spam by the FORTHnet Antispamming Policy and was not delivered to the recipient. The following spam tests returned positive for this message:FORGED_RCVD_HELO,RCVD_IN_BRBL. For further information visitWe are not a spamming community but it seems we have a statice IP address that has a Reverse lookup to "myipaddress.static.lyse.net" and not my email domain. Would setting a cname mail.mydomain.no -> myipaddress.static.lyse.net cure this problem or are there more tricks to be performedOnce I have cured the FORGED_RCVD_HELO I can move to getting the IP removed from BARACUDA.
View 2 Replies View RelatedI'm having this problem that's driving me nuts.Basically I've set up 2 virtual DNS servers.1. Master on fictive domain "domain.xx". 2.ster of fictive domain "sub.domain.xx"NS 1 delegated sub. zone-space to the DNS 2.Everything works except for reverse lookup on sub-domain.For instance. 172.16.0.101 should resolve to my fictive mail.sub.domain.xxIf I try to resolve it with 'host 172.16.0.101' from domain.xx I get:Host 101.0.16.172.in-addr.arpa not found: 2(SERVFAIL)If I do the same from the actual sub.domain.xx I get:Host 101.0.16.172.in-addr.arpa. not found: 3(NXDOMAIN).
If I, on the other hand, try to resolve a hostname both from domain.xx or sub.domain.xx with 'host mail.sub.domain.xx' I get the proper address as the answer: 172.16.0.101I've delegated the in-addr.arpa space to sub.domain.xx dns-server according to RFC 2317 specification, at least I think...Please note this is a virtual network address 172.16.0.0/24Here are the excerpts of the in-arpa-files on both domain.xx and the sub.domain.xx server.
Code:
$TTL 12h
$ORIGIN 0.16.172.IN-ADDR.ARPA.
[code]...
I have a scenario. A domain [URL] then there are 4 private computers on which applications are hosted at port 80. So when some one from outside access the site it should look as [URL] in apache2.conf where [URL] is hosted I added
Code:
ProxyPass /site1 http://192.168.0.2
ProxyReversePass /site1 http://192.168.0.2
is it correct ? I am able to see [URL] but when some one logs in from internet to [URL] it is redirecting to www.mydomain.com and not taking to page where a successful login will go
in [URL]what should I check or do ?
I have a server in a corporate data center for a project. I have an SSH access to this machine at port 22.There are some virtual machines running on this server and then at the back of every thing many other Operating systems are working. Now Since I am behind the data centers firewall my supervisor asked me if I can do some thing by which I can give many people on Internet access to these virtual machines directly. I know if I were allowed to get traffic on port other than 22 then I can do a port forwarding. But since I am not allowed this so what can be a solution in this case.
The people who would like to connect might be complete idiots.Who may be happy just by opening putty at their machines or may be even filezilla.I have configured an Apache Reverse Proxy for redirecting the Internet traffic to the virtual machines on these hosts.But I am not clear as for SSH what can I do.So is there some thing equivalent to an Apache Reverse Proxy which can do similar work for SSH in this situation.I do not have firewall in my hands or any port other than 22 open and in fact even if I request they wont allow to open.2 times SSH is not some thing that my supervisor wants.
I've been struggling with this for a couple of days now. I'm trying to setup a reverse proxy with SSL. The config works when it's not using SSL, but as soon as I setup the virtualhost for 443, I get a ERR_CONNECTION_REFUSED in my browser.
The setup is that it's a CentOS 5.6 running Apache 2.2.3. I was configuring it via this guide: [URL]
This server is acting as a reverse proxy for a Windows server running Apache. Currently, I'm just trying to get the manager page from the Windows server to go through the reverse proxy. Here's the virtual host section of my httpd.conf file on the reverse proxy:
<VirtualHost *:443>
ServerName aspwebview.vtinfo.com
SSLEngine On
SSLCertificateFile /etc/httpd/ssl/star_vtinfo.com.crt
[Code]....
Thoughts? Is there anything I have to do on the Windows server (maybe in the connector section of server.xml)?
I config a revers dns im my domain, but him pointer to external server. Check all dns, virtual servers and apache configurations and dont find where it pointer to out. I too check with:
# host -t ptr 4.204.120.64.in-addr.arpa
4.204.120.64.in-addr.arpa domain name pointer srv.businessconnection.com.br. Should point to another server, this no is the correct!
I make equal config another server and work very well, but in this are some erro. Somebody know what I doing wrong?
I have a question to masters of Apache. In my operating system (CentOS 5) I have installed two Apaches. One is Apache (port 80) from repository where I planning to configure proxy and second one is Apache integrated(port 8090) with KnowledgeTree software. The problem is that when I am trying to configure proxy reverse it simply doesn't work.
This is link to KnowledgeTree software:
- http://127.0.0.1:8090/knowledgeTree
This link I would like to rewrite with proxy like this:
https://myserver.com/knowledgeTree
(HTTPS dont forget)
In my ssl.conf in VirtualHost part I have created something like this:
Code:
<IfModule mod_proxy.c>
<Proxy *>
Order allow,deny
Allow from all
</Proxy>
ProxyRequests off
ProxyPass /knowledgeTree http://127.0.0.1:8090/knowledgeTree
ProxyPassReverse /knowledgeTree http://127.0.0.1:8090/knowledgeTree
<Location /knowledgeTree/>
ProxyPassReverse /
</Location>
</IfModule>
When I am trying to connect I see only: Unable to connect. Firefox can't establish a connection to the server at ifdocu.contaxt.biz:8090.
I am trying to configure a reverse proxy server that can act as a reverse proxy for ms sharepoint server that uses https. Usually when I accessed the sharepoint server at [URL], I will be prompted to enter active directory login. But what was "500 internal server error" and in error.log: failed to enable ssl support for 10.10.1.1 (sharepoint.mycompany)
View 2 Replies View RelatedI want to know how does directive ProxyPass and ProxyPassReverse work. If I have an application on an internal webserver running on port 8080 on Lan but I want it to be accessible on internet via Server A which has public IP but firewall (which I do not have control blocks all except port 80).
Code:
Server A -----------------------------------------Server B
Public IP LAN
(Port 8080 blocked)
if I write
Code:
ProxyPass /application http://192.168.1.5:8080
ProxyPassReverse /application http://192.168.1.5:8080
Will the application be accessible outside. Or do I need to contact sysadmin to open 8080 in A in above diagram. Is there any other way to do the same in apache2.
I want Install nginx As Reverse Proxy for Apache
View 5 Replies View RelatedI've been using squid-cache for a long time for authentication/authorization. It has work fine for years, but now it starts working too slow only in one computer (the others, works fine).
It's configured as a reverse proxy.
I see it can be a DNS problem, but the computer is configured with the same dns servers in resolv.conf that the other computers have.
I use squid 2.6.stable14 on RHEL 4.4.
If I restart the service (service squid restart) it works fine, but 15-20 minutes later, the problem repeats.
Here my setup of Apache :
I have two virtual hosts on separate IP and on both I am using port :80 one is main website domain.name and another webmail.domain.name. And to get full link path I am using index.html with redirection derectives. My question how I can setup each Vhost to he is own redirection directive to set two full link like:
when type webmail.domainname -----> redirect to webmail.domainname/horde/imp/file.php
and www.domainname ------> redirect to www.domainname/csr/
Right now working only one of this Vhosts, just problem to separate them when I type www.domainname -----> apache redirect to webmail.domainname.
index.html
<html>
<head>
<title>WebSite</title>
<meta http-equiv="REFRESH" content="1;url=http://www.domainname/csr/"></HEAD>
<BODY>REDIRECTION</BODY>
</HTML> .....
How can I setup "reverse dns check" option in Postfix ?
View 1 Replies View RelatedI keep getting the error "reverse mapping checking getaddrinfo for fileserver.0.0.10.in-addr.arpa [10.0.0.10] failed - POSSIBLE BREAK-IN ATTEMPT!" in /var/log/auth.log I have a DNS (bind9) setup on my Linux router with the following config:
Code:
router:~# less /etc/bind/named.conf.local
// Local zone definitions here.
zone "0.0.10.in-addr.arpa" {
type master;
file "/etc/bind/db.0.0.10";
[Code]...
I am using a reverse proxy on Debian Lenny and using apache2.
I have a site
Code:
And a site
Code:
Two files in
Code:
Code:
But the problem is [url]and [url]are both pointing to [url] I am unable to find why.I do not want to touch apache2.conf so want to go by having a VirtualHost site1.[url]
I have got a reverse proxy that is working just fine, it accepts requests on port 443 and port 80 and ONLY sends traffic upstream to port 80 to the apache server listening on localhost. I use the following config:
https_port 10.14.1.72:443 cert=/etc/squid/self_certs/site.crt key=/etc/squid/self_certs/site.key defaultsite=site vhost
cache_peer 127.0.0.1 parent 443 80 no-query originserver login=PASS
http_port 10.14.1.72:80 vhost
My problem is the following : The site should act differently in some occasions based on whether http or https was requested. So my idea is to setup second http vhost on apache listening to port 8080 and on that vhost I would server the https code. So is it possible to use SQUID to :
Send traffic destined for port 443 to localhost:8080
and
Send traffic destined for port 80 to localhost:80 ?
I have a webserver apache2 on debian Lenny. I am using gateway as Dom0 and rest of the operating systems are different Dom's .Using a xen virtualization setup.
I want to have a few websites
http://site1.myserver.com
http://myserver.com
and http://myserver.com/site2
I did set up a reverse proxy environment for doing this.
Code:
Dom0 LAN IP ----> 192.168.1.1 Gateway (where reverse proxy is set)
DomU1 LAN IP ----> 192.168.1.13 (here myserver.com and site1.myserver.com both are hosted.)
Domu2 LAN IP ----> 192.168.1.17 myserver.com/site2 is here.
Configuration on Dom0 of sites site1.myserver.com and myserver.com
Virtual Host Configurations on Dom0 in /etc/apache2/sites-enabled/myserver.com (on gateway)
Code:
<VirtualHost *:80>
ServerAdmin webmaster@localhost
ServerName myserver.com
ProxyRequests off
<Proxy *>
Order deny,allow
Allow from all .....
