11-16-2010
Divert DNS traffic to another gateway
hello all,
i have a local bind9 dns server running on debian.
its default gateway is 10.0.0.x. This internet gateway
has limited bandwidth.
we have another high speed internet connection(adsl) and the gateway to access this connection is 10.0.0.y.
all users in the office are using 10.0.0.x as dns server(its distibuted by the dhcp server)
i want my bind dns server to use the adsl (10.0.0.y) connection to do lookups on external dns servers(e.g the isp dns server or google public dns server) instead of the 10.0.0.x gateway.
please help and advise, how can i solve out this issue.
thanks
coolatt
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
i want to run a ksh script 'myscript' at the background and direct the system to return any error msg to /tmp/myscript.err and the output of 'myscript' to /tmp/myscript.out
how do i do that at the command prompt? thank you. (3 Replies)
Discussion started by: kanang
3 Replies
2. UNIX and Linux Applications
Hello,
I have a question about ways to filter smtp traffic that passes from LAN through FreeBSD 7.0 machine (configured with NAT and gateway="yes" in /etc/rc.conf) to the Internet.
I've installed both SpamAssassin and ClamAv, and now need the software that would listen to port 25 on private... (1 Reply)
Discussion started by: matagou
1 Replies
3. UNIX for Advanced & Expert Users
I'd like to get some opnions on choosing DNS server:
Windows DNS vs Linux BIND comparrsion:
1) managment, easy of use
2) Security
3) features
4) peformance
5) ??
I personally prefer Windows DNS server for management, it supports GUI and command line. But I am not sure about security... (2 Replies)
Discussion started by: honglus
2 Replies
4. Linux
Dear Sir
I am a newbie in the world of IP telephony. I have been working with Asterisk PBX (SIP) and Cisco Call Manager (MGCP) but now I am learning on how to work GNUGK for H.323 Gatekeeper.
I am having a problem, configuring static call routing on GNUGK
in the section
... (0 Replies)
Discussion started by: mfondoum
0 Replies
5. UNIX for Advanced & Expert Users
Hi Guys,
This was been a Project kinda stuff i working out effectively from past 1 month.i would like to thank Unix forums for helping me out.So here is my Problem.i was been planning out in creating a Intelligent monitoring machine to make it available for multiple applications to get the log... (2 Replies)
Discussion started by: kgrvamsi
2 Replies
6. IP Networking
Is there a command that can lookup ip address, subnet mask, gateway, and dns all at the same. I know ifconfig can lookup ip address and subnet mask. I know route -n can lookup gateway. Not sure about a dns command. So I hope there is a way to lookup ip address, subnet mask, gateway, and dns all at... (2 Replies)
Discussion started by: cokedude
2 Replies
7. Red Hat
I am trying to setup a CentOS 6.2 server that will be doing 3 things DHCP, DNS & Samba for a very small office (2 users). The idea being this will replace a very old Win2k server. The users are all windows based clients so only the server will be Linux based.
I've installed CentOS 6.2 with... (4 Replies)
Discussion started by: FireBIade
4 Replies
8. Cybersecurity
Hi All,
I have just started learning Lunix; I hope you can help me to block unwanted DNS traffic.
I have big spikes of traffic few times a day. The duration is from few minutes to two hours.
Incoming traffic is 1 mbps, outgoing is 3mbps
Using my friend's script I was able to get some... (1 Reply)
Discussion started by: OlegE
1 Replies
9. Proxy Server
Hi there,
I have a VPS and am working on a little side project for myself and friend which is a DNS proxy. Everything was great till recently. My VPS IP has been detected by some botnet or something, and I believe SMURF attacks are occuring. The VPS provider keeps shutting down my VPS... (3 Replies)
Discussion started by: phi0x
3 Replies
10. UNIX for Beginners Questions & Answers
Dear friends
I use RedHat 6.5, which sets the gateway in the configuration file / etc / sysconfig / network as GATEWAY = 192.168.1.26, and the gateway in the configuration file / etc / sysconfig / network-scripts / ifcfg-eth11 as GATEWAY = 192.168.1.256. The two gateways are different.... (6 Replies)
Discussion started by: tanpeng
6 Replies
LEARN ABOUT DEBIAN
ipkungfu
ipkungfu(8) System Manager's Manual ipkungfu(8)
NAME
ipkungfu - An iptables-based firewall for Linux
SYNOPSIS
ipkungfu [ -c ] [ -t ] [ -d ] [ -h ] [ -v ] [ --quiet ] [ --panic ] [ --no-caching
DESCRIPTION
ipkungfu is an iptables-based Linux firewall. The primary design goals are security, ease of use, and performance, in that order. It takes
advantage of advanced features of iptables, tcpwrappers, and the Linux kernel. It also simplifies the configuration of internet connection
sharing, advanced routing, and other networking needs.
OPTIONS
-c (or --check)
Check whether ipkungfu is loaded, and report any command line options it may have been loaded with.
-t (or --test)
Runs a configuration test, and displays the results. Note that this does not test or display all configuration options. This
gives you an opportunity to verify that major configuration options are correct before putting them into action.
-d (or --disable)
Disables the firewall. It is important to know exactly what this option does. All traffic is allowed in and out, and in the
case of a gateway, all NATed traffic is forwarded (the option retains your connection sharing options). Custom rules are not
implemented, and deny_hosts.conf is ignored.
-f (or --flush)
Disables the firewall COMPLETELY. All rules are flushed, all chains are removed. Any port forwarding or internet connection
sharing will cease to work.
-h (or --help)
Displays brief usage information and exits.
-v (or --version)
Displays version information and exits.
--quiet Runs ipkungfu with no standard output
--panic Drops ALL traffic in all directions on all network interfaces. You should probably never use this option. The --panic option
is available for the highly unusual situation where you know that an attack is underway but you know of no other way to stop
it.
--failsafe If ipkungfu fails, --failsafe will cause all firewall policies to revert to ACCEPT. This is useful when working with ipkungfu
remotely, to prevent loss of remote access due to firewall failure.
--no-caching
Disables rules caching feature.
FILES
/etc/ipkungfu/ipkungfu.conf
/etc/ipkungfu/advanced.conf
/etc/ipkungfu/accept_hosts.conf
/etc/ipkungfu/deny_hosts.conf
/etc/ipkungfu/custom.conf
/etc/ipkungfu/log.conf
/etc/ipkungfu/redirect.conf
/etc/ipkungfu/services.conf
/usr/sbin/ipkungfu
/usr/share/doc/ipkungfu/AUTHORS
/usr/share/doc/ipkungfu/README
/usr/share/doc/ipkungfu/FAQ
/usr/share/doc/ipkungfu/ChangeLog
/usr/share/doc/ipkungfu/COPYING
SEE ALSO
iptables(8).
January 2003 ipkungfu(8)