07-11-2001
Hi folks,
After searching the net for information I have finally found out that SunOS 4.1.4 has an issue with DNS (basically doesn't work without NIS or a patched resolver) The following is the thread that discusses the issue:
> Has anyone successfully gotten their statically linked FWTK-1.3 proxies
> working on a SunOS 4.1.4 platform *NOT* running NIS?
Yes, using BIND library or libresolv+.
> Our recent effort
> at building such a firewall makes me think the SunOS 4.1.4 resolver may
> be seriously broken (i.e., no DNS support), as compared to SunOS 4.1.3.
>
> After a fresh reload of the OS from CDROM, networking apps like ping and
> telnet can only resolve what's in the local /etc/hosts, despite having a
> properly configured /etc/resolv.conf pointing to an internal nameserver.
> Well, properly configured for SunOS 4.1.3, anyway; we don't have the Sun
> Release Notes for SunOS 4.1.4, and there's always a chance this is some
> sort of new Sun feature, I suppose (hint, hint...).
>
> An 'nslookup' from the firewall finds the internal nameserver without any
> problems. The internal nameserver forwards to the DNS on the firewall (a
> split DNS setup), which works; the firewall's DNS forwards to the external
> nameservers, which also works. Changing resolv.conf to point to the local
> nameserver (on the firewall) doesn't fix things.
>
> We snooped the inside net, and saw no DNS packets from the firewall to the
> inside nameserver when the resolver should have been sending to it; when a
> name was checked using nslookup from the firewall, we saw the traffic we'd
> expect. Starting up a ypbind on the firewall (for test purposes only) got
> us full resolvability (the NIS master goes to the internal DNS).
As far as I know, SunOS 4.1.3 had no more DNS support than 4.1.4. Either
your 4.1.3 was running NIS, either its shared libs had been rebuilt with a new
resolver. What you describe is exactly the same as with stock 4.1.3.
> Anyway, to solve our problems, we replaced the SunOS resolver and DNS with
> BIND 4.9.2, rebuilt the shared C library (but not libc.a), and rebuilt the
> proxies with dynamic links (static links still don't work, obviously).
Are you sure that you linked the proxies with your new libresolv.a ? They
should work statically linked as well.
> We now have both Sun and TIS apps on the firewall talking to the internal DNS
> nameserver.
Congratulations.
> Any comments/suggestions/opinions/facts would be welcome. Thanks,
I personally prefer to use libresolv+ rather than BIND library because it
allows to search hosts both in /etc/hosts and DNS. It's sometimes more
comfortable than relying entirely on DNS.
I thank all you for your help in trying to resolve the issue.
Don
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Is there a website to go to that gives you a set of instructions to set up DNS from start to finish? I need it for a Solaris 8 box on the Intel platform side. (3 Replies)
Discussion started by: Deuce
3 Replies
2. UNIX for Dummies Questions & Answers
I just bought a unix dedicated server from a company so that i can host websites on that server. I wanted to configure it but I have no clue :confused: as to where to start. If some one can just guide me to the right direction, i would greatly appreciate it.
megnote (1 Reply)
Discussion started by: megnote
1 Replies
3. UNIX for Dummies Questions & Answers
Hi,
I would like to create an internal webpage for my company that would only be viewable when connected to the VPN or internal network. I want a webpage like newsite.company.com. Is there a way to do this. We obviously already have www.company.com, but how would I go about creating the newsite.... (1 Reply)
Discussion started by: ejbrever
1 Replies
4. IP Networking
I would like to set up a DNS on my system, just to learn really, how difficult and what all is involved in the set up? How difficult? (6 Replies)
Discussion started by: jo calamine
6 Replies
5. Solaris
hey guys, how to add soalris box as a microsoft DNS Client ?
and how to register in the microsoft DNS ??
i managed to query from the DNS server after adding /etc/resolve.conf and editing /etc/nsswitch.conf
but i need to register the soalris server (dns Client) into Microsoft DNS automatically.... (3 Replies)
Discussion started by: mduweik
3 Replies
6. UNIX for Advanced & Expert Users
I'd like to get some opnions on choosing DNS server:
Windows DNS vs Linux BIND comparrsion:
1) managment, easy of use
2) Security
3) features
4) peformance
5) ??
I personally prefer Windows DNS server for management, it supports GUI and command line. But I am not sure about security... (2 Replies)
Discussion started by: honglus
2 Replies
7. Red Hat
Hi,
I have a question on how to point the DNS server-1's A-record to second DNS server, which is DNS server-2. So, the computer can access other domain which only listed in the DNS server-2. The scenario is as follow:
http://img689.imageshack.us/img689/6333/12234.png
How to configure this... (4 Replies)
Discussion started by: Paris Heng
4 Replies
8. Red Hat
I am trying to setup a CentOS 6.2 server that will be doing 3 things DHCP, DNS & Samba for a very small office (2 users). The idea being this will replace a very old Win2k server. The users are all windows based clients so only the server will be Linux based.
I've installed CentOS 6.2 with... (4 Replies)
Discussion started by: FireBIade
4 Replies
9. Red Hat
how do we update dns zone file entries without restarting named demon (5 Replies)
Discussion started by: abhay1983
5 Replies
10. Solaris
Hi,
We have built a new server (RHEL VM)and added that IP/hostname into dns zone configs file on DNS server (Solaris 10). Reloaded the configuration using
and added nameserver into resolv.conf on client. But when I am trying nslookup, its not getting resolved. The nameserver is not able to... (8 Replies)
Discussion started by: snchaudhari2
8 Replies
LEARN ABOUT DEBIAN
polygraph-dns-cfg
POLYGRAPH-DNS-CFG(1) User Commands POLYGRAPH-DNS-CFG(1)
NAME
polygraph-dns-cfg - DNS server configuration tool
SYNOPSIS
dns-cfg [--option ...]
DESCRIPTION
Given a zone name, DNS names, and IP addresses, dns-cfg builds configuration suitable for use with BIND and, perhaps, other DNS servers.
Dns-cfg output consists of three parts. The first part is the text to cut-and-paste into BIND's named.conf file. This part is sent to the
standard output. The outer two parts are direct and reverse zone files. Those may be quite large and are dumped on disk into the appropri-
ately named files. Dns-cfg can use PGL configuration as the source of information.
OPTIONS
--help list of options
--version
package version info
--config <filename>
PGL configuration
--cfg_dirs <dirs>
directories for PGL #includes
--zone <str>
zone name
--addresses <str>
IP addresses
--names <str>
domain names
COPYRIGHT
Copyright (C) 2003-2006 The Measurement Factory, Inc.
SEE ALSO
polygraph(7) - general information and a list of programs
http://www.web-polygraph.org/ - project web site
polygraph-dns-cfg - Web Polygraph February 2010 POLYGRAPH-DNS-CFG(1)