Re: ppp -nat broken [solved]

cpghost_at_cordula.ws
Date: 10/29/04

Next message: Kris Kennaway: "Re: Fetchyahoo does not get message IDs"

Previous message: Karl M. Joch: "5.2.1 - Dolphin 4036 4 port serial? (port 3/4 not recogniced)"
In reply to: Peter Ulrich Kruppa: "Re: ppp -nat broken [solved]"
Next in thread: Peter Ulrich Kruppa: "Re: ppp -nat broken [solved]"
Reply: Peter Ulrich Kruppa: "Re: ppp -nat broken [solved]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Fri, 29 Oct 2004 18:02:55 +0200
To: Peter Ulrich Kruppa <root@pukruppa.de>

On Fri, Oct 29, 2004 at 09:52:51AM +0200, Peter Ulrich Kruppa wrote:
> On Tue, 26 Oct 2004, Peter Ulrich Kruppa wrote:
> learn that named and BIND have changed. I did the respective
> changes and edited two entries in /var/named/etc/named/named.conf
> 1) I commented
> listen-on {127.0.0.1;};

Instead of opening a 53/tcp, 53/udp port to the world (ANYADDR),
you may prefer to restrict the address range to your internal LAN only,
with something like (replace 192.168.10.0/24 accordingly):

listen-on { 127.0.0.1; 192.168.10.0/24; };

Check with 'sockstat -46' to be sure.

> 2) I put my two nameserver IPs (from /etc/resolv.conf) into
> forwarders {
> 195.62.99.42;
> 195.62.97.177;
> };

They are not absolutely necessary: named is perfectly able to
query root and other servers itself. You could experiment with
or without forwarders, and pick the configuration that is faster
for you. As a general rule of thumb: Forwarders are good for
recursive queries, because only one query will travel through
your ADSL link, other queries being done by your ISPs nameservers.
They are also good, because you can profit from your ISPs nameservers'
cache. But they can hinder performance, should one or both of those
nameservers be down for whatever reason.

Cheers,
cpghost.

-- 
Cordula's Web. http://www.cordula.ws/
_______________________________________________
freebsd-stable@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org"

Next message: Kris Kennaway: "Re: Fetchyahoo does not get message IDs"

Previous message: Karl M. Joch: "5.2.1 - Dolphin 4036 4 port serial? (port 3/4 not recogniced)"
In reply to: Peter Ulrich Kruppa: "Re: ppp -nat broken [solved]"
Next in thread: Peter Ulrich Kruppa: "Re: ppp -nat broken [solved]"
Reply: Peter Ulrich Kruppa: "Re: ppp -nat broken [solved]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages

Re: ppp -nat broken [solved]
... > query root and other servers itself. ... > or without forwarders, and pick the configuration that is faster ... > recursive queries, because only one query will travel through ... other queries being done by your ISPs nameservers. ...
(freebsd-stable)
Re: Caching nameserver
... > I too have a local bind server, and have and have not used my ISP ... > hosts as forwarders. ... Surely your ISPs nameservers are almost always the ...
(comp.os.linux.networking)