LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 01-19-2002, 12:03 PM   #1
MikHud
Member
 
Registered: Jan 2002
Location: UK
Distribution: Ubuntu
Posts: 45

Rep: Reputation: 15
Double Reverse DNS + DHCP


When using a telent server on a LAN with DHCP, is it necessary to have a local DNS eg BIND?

All PCs (W98) on the LAN use DHCP (served by a dial-up ISDN router) which assigns IPs to them and also provides them with the Internet DNS IPs as provided by my ISP. This works fine, and the PCs can browse the internet resolving domain names OK. My Telnet Server is on Red Hat 7.2 which does not use DHCP but has a static IP which is set in the telnet clients on the PCs. There is no DNS eg: BIND installed on the telnet server.

Problem:-
Telnet connections are very slow (20-30 secs) and the server is calling the internet DNS each time a client connects. I know this because I have installed a Router Monitor (RBC Data) which deciphers the last packet to make an internet call. The internet calls are UDP Protocol 17 to Port 53, and the Destination is the first nameserver listed in Red Hat's /etc/resolv.conf. I believe this may be called "Double reverse DNS".
Deleting (renaming) /etc/resolv.conf cures the telnet problems, but of course I can't then refer to internet DNS to resolve domain names eg: for web browsing from Red Hat.
Presumably the RH telnet server is trying to check the domain names of the telnet clients when they connect. This checking is not essential because I get nice fast telnet connections when resolv.conf is removed.
Is there any way to tell the telnet server not to check the name of each client, or is there another way (other than resolv.conf) to provide DNS to non-telnet internet services such as the web browser? Or is the only solution to install BIND which I understand is not the easiest service to configure.

I might move to SSH so ideally I'd like a solution that will work with SSH too!
 
Old 01-19-2002, 12:23 PM   #2
lfslinux
LFS Maintainer
 
Registered: Jan 2002
Location: Canmore, Alberta, Canada
Distribution: Linux From Scratch
Posts: 372

Rep: Reputation: 30
Re: Double Reverse DNS + DHCP

Quote:
Originally posted by MikHud
When using a telent server on a LAN with DHCP, is it necessary to have a local DNS eg BIND?

All PCs (W98) on the LAN use DHCP (served by a dial-up ISDN router) which assigns IPs to them and also provides them with the Internet DNS IPs as provided by my ISP. This works fine, and the PCs can browse the internet resolving domain names OK. My Telnet Server is on Red Hat 7.2 which does not use DHCP but has a static IP which is set in the telnet clients on the PCs. There is no DNS eg: BIND installed on the telnet server.

Problem:-
Telnet connections are very slow (20-30 secs) and the server is calling the internet DNS each time a client connects. I know this because I have installed a Router Monitor (RBC Data) which deciphers the last packet to make an internet call. The internet calls are UDP Protocol 17 to Port 53, and the Destination is the first nameserver listed in Red Hat's /etc/resolv.conf. I believe this may be called "Double reverse DNS".
Deleting (renaming) /etc/resolv.conf cures the telnet problems, but of course I can't then refer to internet DNS to resolve domain names eg: for web browsing from Red Hat.
Presumably the RH telnet server is trying to check the domain names of the telnet clients when they connect. This checking is not essential because I get nice fast telnet connections when resolv.conf is removed.
Is there any way to tell the telnet server not to check the name of each client, or is there another way (other than resolv.conf) to provide DNS to non-telnet internet services such as the web browser? Or is the only solution to install BIND which I understand is not the easiest service to configure.

I might move to SSH so ideally I'd like a solution that will work with SSH too!
You can tell your system to try to resolve a hostname through local files like /etc/hosts first. If that fails, it will use the nameservers listed in /etc/resolv.conf

Here's how it's setup best:

Edit the /etc/nsswitch.conf file if you have it and check for this line:

hosts: files dns

it may be reversed, as: hosts: dns files

If so, change it.

if you don't have the /etc/nsswitch.conf file, create it and add "hosts: files dns" to it.


Next, edit or create the /etc/host.conf file and have it contain the following:

order hosts,bind


Now try telnet again (no need to restart network or anything. These changes should take effect on-the-fly when the next network attempt is made by a program)
 
Old 03-06-2002, 01:42 PM   #3
Scotty2435
Member
 
Registered: Dec 2001
Location: Waco, Texas USA
Distribution: Redhat 7.1
Posts: 232

Rep: Reputation: 30
i have the same problem except with ftp and pop3 as well. I can't just add to /etc/hosts because I don't have the ips for everyone trying to use pop3 and ftp. Is there anyway to tell /etc/hosts to allow any ip or just disable reverse dns in all my services. Keep in mind I still want to be able to browse internet from the problem server.
Thanks

Last edited by Scotty2435; 03-06-2002 at 01:44 PM.
 
Old 03-06-2002, 05:15 PM   #4
lfslinux
LFS Maintainer
 
Registered: Jan 2002
Location: Canmore, Alberta, Canada
Distribution: Linux From Scratch
Posts: 372

Rep: Reputation: 30
Quote:
Originally posted by Scotty2435
i have the same problem except with ftp and pop3 as well. I can't just add to /etc/hosts because I don't have the ips for everyone trying to use pop3 and ftp. Is there anyway to tell /etc/hosts to allow any ip or just disable reverse dns in all my services. Keep in mind I still want to be able to browse internet from the problem server.
Thanks
I'd say adding a DNS server to /etc/resolv.conf should fix all your reverse DNS problems. As long as that DNS server (say your ISP) can be reached at the time of somebody making a connection, there shouldn't be any problem.

pop3 and ftp shouldn't disallow access when an IP can't be resolved, they just time out after a while. Sometimes you can tell pop3 and ftp servers not to do any reverse DNS lookups, but that's highly server dependant.
 
Old 03-06-2002, 08:38 PM   #5
Scotty2435
Member
 
Registered: Dec 2001
Location: Waco, Texas USA
Distribution: Redhat 7.1
Posts: 232

Rep: Reputation: 30
thanks for your help. I solved my problem by adding the lan computers to /etc/hosts. The outside computers that i tested did not have the logon lag problem anyway. Some might though.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
No reverse DNS??? DragonM15 Linux - Networking 5 11-22-2005 12:06 AM
Reverse DNS Webbie Linux - Networking 4 10-10-2005 07:49 PM
reverse DNS in C? Thinking Programming 3 04-27-2005 12:05 PM
Reverse DNS Snerkel Linux - Networking 11 04-19-2005 12:25 PM
double entries at reverse zone by BIND 9 ccc Linux - Networking 0 01-08-2004 12:49 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 04:46 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration