Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: iptables & port 53 (DNS)
Operating Systems Linux Red Hat iptables & port 53 (DNS) Post 302625091 by jnojr on Tuesday 17th of April 2012 09:20:00 AM
Old 04-17-2012
DNS is UDP... you need to allow the DNS server to talk back to the client on UDP 53
 

10 More Discussions You Might Find Interesting

1. IP Networking

Resolving port 8080 in DNS

Hi I have my DNS servers (BIND 8) running on two Solaris 8 boxes. I need to be able to resolve an address blah.xxx.net to an IP address followed by :8080 - (for Tomcat). I tried doing this in my zone file but it failed. Can someone give me a pointer on where this configuration should be done?... (1 Reply)
Discussion started by: korfnz
1 Replies

2. UNIX for Advanced & Expert Users

LINUX 9 IPTABLES and DNS

I have installed a linux 9 router/firewall and have issues with outside DNS queries making it in. here are my IPTABLE rules, can anyone make some suggestions? ETH1 is my outside facing Interface, ETH0 is my inside facing interface. Accept If input interface is not eth1 Accept If protocol is... (1 Reply)
Discussion started by: frankkahle
1 Replies

3. Linux

LINUX 9 IPTABLES and DNS

I have installed a linux 9 router/firewall and have issues with outside DNS queries making it in. here are my IPTABLE rules, can anyone make some suggestions? ETH1 is my outside facing Interface, ETH0 is my inside facing interface. Accept If input interface is not eth1 Accept If protocol... (6 Replies)
Discussion started by: frankkahle
6 Replies

4. UNIX for Dummies Questions & Answers

FTP, DNS & BIND

Hi GURUs, I have two queries. 1)I know I can use FTP clients for my File transfer needs, but I want to learn FTP thru command line, any one can point me to some good online resource available to learn FTP command line with examples, of course free except UNIX man pages. 2) Our company has... (4 Replies)
Discussion started by: patras
4 Replies

5. Solaris

OS Problems -no DNS & SSH not working

I just installed Solaris 6/10 without any problems but I didn't connect the network cable when I installed it. Here are my problems: -I can access webpages using IP addrsses but not with domain names -ssh is installed but it is not running ('ps -e | grep sshd' didn't show it) I have been... (4 Replies)
Discussion started by: kungpow
4 Replies

6. UNIX for Dummies Questions & Answers

DNS & DHCP configuration

Hi to all. Sorry for my bad english. For pure self-educational, not professional, purposes, I am studying how to configure a server with several services operating on it. For my experiment I'm using VirtualBox 3.1.4 on a WinXP host with 3 FreeBSD guests; one acts as a DHCP + DNS server; the... (0 Replies)
Discussion started by: marboxer
0 Replies

7. Solaris

Bind9 DNS on Solaris 10 x4270 & CPU usage

I have configured a Bind9 DNS on a X4270 machine with Solaris10 I am excuting some repformance tests with DNSPERF tool and maximun CPU usage is 23%. I have seen with prstat -L -p PID that named process usses only 2 of the 8 available CPU at the same time although threads for all CPUs exist.... (2 Replies)
Discussion started by: parisph
2 Replies

8. Red Hat

DHCP & DNS - Clients get IP but don't register in DNS

I am trying to setup a CentOS 6.2 server that will be doing 3 things DHCP, DNS & Samba for a very small office (2 users). The idea being this will replace a very old Win2k server. The users are all windows based clients so only the server will be Linux based. I've installed CentOS 6.2 with... (4 Replies)
Discussion started by: FireBIade
4 Replies

9. IP Networking

OS X & VPN DNS Issue

I'll try and be brief and detailed. I have a Macbook Pro Retina running Mavericks. When on my network at the office (work) everything local works just fine. Local servers are resolved through our internal DNS settings. For example, we have a fileserver at "fs01". I can connect to it with... (1 Reply)
Discussion started by: jbhardman
1 Replies

10. Linux

Domain registrars & DNS servers

I have read many tutorials on bind and i understand the A,MX, CNAME records. Internally, on a LAN we can install bind and create all these records and we can tell all PC and servers to use this bind as DNS server.that's fine. On the Internet, when we have purchased a valid domain like... (5 Replies)
Discussion started by: coolatt
5 Replies

LEARN ABOUT MINIX

nonamed

NONAMED(8)						      System Manager's Manual							NONAMED(8)

NAME

       nonamed - not a name daemon, but acts like one

SYNOPSIS

       nonamed [-d[level]] [-p port] [-n address[/port]]

DESCRIPTION

       Nonamed	is  not  an Internet name daemon.  When started it immediately tries to find a real name daemon on the local network.  If it finds
       one then it will relay any DNS queries to that name daemon.  If it can't find one then it will do its best to answer simple  queries  using
       the /etc/hosts table for name to address translation.

       On  startup nonamed broadcasts up to five" simple UDP queries on the local network.  This is a somewhat nasty thing to do, because it makes
       all name servers on the net spring into action to answer the request.  The first name server to answer is used by  nonamed  to  answer  the
       queries	of  its  clients.  The broadcast search is repeated after an hour to give another name server a chance to be abused.  (It is quite
       normal for a host to use a remote name server.  The broadcasts are a bit unfriendly, but they only happen once an hour.)

       If a real name server is found then nonamed enters "relay mode", passing all queries on.  In relay mode the daemon cannot be  distinguished
       from a real DNS name daemon.

       Nonamed	accepts  both  UDP and TCP queries under Minix-vmd.  Under standard Minix only UDP queries are accepted.  256" relayed UDP queries
       can be outstanding before it forgets where the first one came from.

       In answer mode nonamed can answer simple DNS queries to translate a host name to an IP address, or an IP address to a host  name.   Suppose
       /etc/hosts looks like this:

	      127.0.0.1      localhost
	      192.9.200.1    darask.home.cs.vu.nl
	      192.9.200.2    burask.home.cs.vu.nl

       Then  queries  for  the host names listed can be answered with the IP addresses to the left of them.  If the name can't be found then it is
       retried with the domain name stripped of, this is because "localhost" is looked up  as  "localhost.home.cs.vu.nl"  in  the  above  example.
       Reverse lookups are answered with the first hostname on the line with the IP address.

       UDP  queries are immediately answered on startup if the answer can be found in the hosts file.  Failure answers, and answers to TCP queries
       are delayed until it decides that there are no real name servers out there.

       Nonamed employs several timeouts for efficient operation:

       If five" broadcasts, two seconds" apart fail to produce a name server on startup then it decides  that  there  are  no  real  name  servers
       around.

       After 1 hour" it will again look for a name server.  (We don't want to hog the same one indefinitely.)

       If no UDP reply is seen in .ds m1
	than  a  simple probe is sent the name server.	If that doesn't provoke an answer in two seconds" then it will look for a new name server.
       A failing TCP connection will also invoke a search, the TCP connection is then made to the new name server.  A client using UDP will  retry
       eventually,  a  client  using TCP will notice nothing but a short delay.  The daemon drops back into answer mode if the search fails and it
       has a hosts file with a "localhost" entry.

       It waits five minutes" for any action on a TCP stream before the connection is aborted.

       In answer mode it will generate data with a TTL (time to live) of 1 hour".

OPTIONS

       The options are only useful when debugging nonamed, although it can be very instructive to watch DNS queries being done.

       -d[level]
	      Set debugging level to level (a single digit, by default 1.)  Debug mode 1 makes nonamed decode and  display  the  DNS  queries  and
	      replies  that  it  receives,  sends  and	relays.   The  decoding  only handles the common cases.  In debug mode 2 it prints tracing
	      information about the internal jobs it executes.	In debug mode 3 it core dumps when an error causes  it	to  exit.   The  debugging
	      level may also be increased by 1 at runtime by sending signal SIGUSR1 or turned off (set to 0) with SIGUSR2.

       [-p port]
	      Port to use instead of the normal domain port.

       [-n address[/port]]
	      Use  this  IP  address  and port to find a real name server.  It can be used to make nonamed relay to another nonamed.  (They do not
	      listen to broadcasts, of course.)  You can run two daemons on one machine if you choose a new port number for one of them.  You  can
	      force nonamed out of relay mode by sending it a hangup signal.

FILES

       /etc/hosts     Hosts to address translation table when in answer mode.

SEE ALSO

       gethostbyname(3), resolver(3), hosts(5), set_net_default(8), boot(8), inetd(8), irdpd(8), rarpd(8).

NOTES

       You can specify a remote name server in /etc/resolv.conf to circumvent nonamed.	But then you lose its talent for automatically finding new
       name servers when the remote name server becomes unreachable.

       Don't add a "localhost" entry to the hosts file if there are remote name servers.  It makes nonamed drop back in answer	mode  on  a  flaky
       network.

BUGS

       If  you	can  get  a  remote nonamed to listen to your name server then you can make it believe anything you want to.  You need access to a
       machine on the same subnet of course.

AUTHOR

       Kees J. Bot (kjb@cs.vu.nl)

																	NONAMED(8)
All times are GMT -4. The time now is 09:09 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy