[ale] still trying to figure it out
Geoffrey
esoteric at 3times25.net
Thu Jul 31 20:17:34 EDT 2003
Robert L. Harris wrote:
>
> Ok, do you have the same dns config inside and out?
Yes, and the output for the sniffing was off of the ethernet connected
to my dsl. So I see both dns requests go out, I see one come back okay,
the other comes back 'no name.'
> What do you get with dig outputs?
From inside the dmz:
dig mybenefits.csplans.com
; <<>> DiG 9.2.2 <<>> mybenefits.csplans.com
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19937
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;mybenefits.csplans.com. IN A
;; Query time: 115 msec
;; SERVER: 66.20.234.15#53(66.20.234.15)
;; WHEN: Thu Jul 31 20:11:19 2003
;; MSG SIZE rcvd: 40
From the firewall on the other side of the dmz:
dig mybenefits.csplans.com
; <<>> DiG 8.2 <<>> mybenefits.csplans.com
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUERY SECTION:
;; mybenefits.csplans.com, type = A, class = IN
;; ANSWER SECTION:
mybenefits.csplans.com. 0S IN A 65.83.73.47
;; Total query time: 103 msec
;; FROM: denali.3times25.net to SERVER: default -- 66.20.234.14
;; WHEN: Wed Jul 30 20:03:24 2003
;; MSG SIZE sent: 40 rcvd: 56
Can you hit the server on 53 tcp and 53 udp?
Are you referring to the dns server? Yes
--
Until later: Geoffrey esoteric at 3times25.net
The latest, most widespread virus? Microsoft end user agreement.
Think about it...
_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale
More information about the Ale
mailing list