[ale] still trying to figure it out

matty91 at bellsouth.net matty91 at bellsouth.net
Fri Aug 1 05:33:00 EDT 2003 

Does the DNS server have two IP addresses? I see:

66.20.234.14
66.20.234.15

Are you using views or ACLs on the DNS server?

On Thu, 31 Jul 2003, Geoffrey wrote:

> Robert L. Harris wrote:
> >
> > Ok, do you have the same dns config inside and out?
>
> Yes, and the output for the sniffing was off of the ethernet connected
> to my dsl.  So I see both dns requests go out, I see one come back okay,
> the other comes back 'no name.'
>
> > What do you get with dig outputs?
>
>  From inside the dmz:
>
> dig mybenefits.csplans.com
>
> ; <<>> DiG 9.2.2 <<>> mybenefits.csplans.com
> ;; global options:  printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19937
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
>
> ;; QUESTION SECTION:
> ;mybenefits.csplans.com.                IN      A
>
> ;; Query time: 115 msec
> ;; SERVER: 66.20.234.15#53(66.20.234.15)
> ;; WHEN: Thu Jul 31 20:11:19 2003
> ;; MSG SIZE  rcvd: 40
>
>  From the firewall on the other side of the dmz:
>
> dig mybenefits.csplans.com
>
> ; <<>> DiG 8.2 <<>> mybenefits.csplans.com
> ;; res options: init recurs defnam dnsrch
> ;; got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
> ;; QUERY SECTION:
> ;;      mybenefits.csplans.com, type = A, class = IN
>
> ;; ANSWER SECTION:
> mybenefits.csplans.com.  0S IN A  65.83.73.47
>
> ;; Total query time: 103 msec
> ;; FROM: denali.3times25.net to SERVER: default -- 66.20.234.14
> ;; WHEN: Wed Jul 30 20:03:24 2003
> ;; MSG SIZE  sent: 40  rcvd: 56
>
>
> Can you hit the server on 53 tcp and 53 udp?
>
> Are you referring to the dns server?  Yes
>
> --
> Until later: Geoffrey		esoteric at 3times25.net
>
> The latest, most widespread virus?  Microsoft end user agreement.
> Think about it...
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
>

Ryan Matteson - UNIX Administrator | GPG ID: 92D5DFFF
Public Key: http://www.daemons.net/~matty/public_key.txt
Fingerprint = 4BEC 6145 30A6 BCE6 5602 FF11 4954 165D 92D5 DFFF
_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale

More information about the Ale mailing list