Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
03-06-2014, 01:24 AM
|
#1
|
Member
Registered: Jul 2013
Posts: 213
Rep:
|
ssh to xxx.xxx.xxx.xxx
Code:
reverse mapping checking getaddrinfo for swift.gai.net.50.168.192.in-addr.arpa [192.168.50.3] failed - POSSIBLE BREAK-IN ATTEMPT!
when i am trying to ssh to server, i am getting above msg. may i know what entry needs to be done in dns. how ever i have already mapped this in dns in reverse and forward zone also.
Last edited by sachin.davra; 03-06-2014 at 02:00 AM.
|
|
|
03-06-2014, 04:49 AM
|
#2
|
Member
Registered: Oct 2009
Distribution: Slackware
Posts: 534
|
That IP is a local one, so things are a little more (not by much) complicated since your DNS server should not try to resolve this request outside your network...
So first you should have a zone for this reverse names in 'named.conf' on your DNS server:
Code:
zone "50.168.192.in-addr.arpa" {
type master;
file "revp.50.168.192";
};
Then, be sure one of your A records match that of the PTR record for that IP..
Also, be sure that your server does check your local DSN first..
Here's a nice, small tutorial for something similar: http://www.madboa.com/geek/soho-bind/
|
|
|
03-06-2014, 09:30 PM
|
#3
|
Member
Registered: Jul 2013
Posts: 213
Original Poster
Rep:
|
Actually reverse zone in named.conf is already configured and it is configured to look for local dns first. However i get this error when i try to ssh to that server only.
|
|
|
03-07-2014, 01:12 AM
|
#4
|
Member
Registered: Oct 2009
Distribution: Slackware
Posts: 534
|
Hmm.. try using nslookup or dig from that server to see how it resolves the address..
Code:
dig -x 129.168.50.3
|
|
|
03-07-2014, 01:30 AM
|
#5
|
Member
Registered: Jul 2013
Posts: 213
Original Poster
Rep:
|
Code:
[sachin.davra@GAIDL-5015 ~]$ ssh root@192.168.50.3
reverse mapping checking getaddrinfo for swift.gai.net.50.168.192.in-addr.arpa [192.168.50.3] failed - POSSIBLE BREAK-IN ATTEMPT!
root@192.168.50.3's password:
Last login: Fri Mar 7 05:05:41 2014 from 192.168.0.125
[root@swift ~]# dig -x 192.168.50.3
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.17.rc1.el6 <<>> -x 192.168.50.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18207
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;3.50.168.192.in-addr.arpa. IN PTR
;; ANSWER SECTION:
3.50.168.192.in-addr.arpa. 86400 IN PTR swift.gai.net.50.168.192.in-addr.arpa.
;; AUTHORITY SECTION:
50.168.192.in-addr.arpa. 86400 IN NS GAIDL-5001.gai.net.
;; ADDITIONAL SECTION:
GAIDL-5001.gai.net. 10800 IN A 192.168.50.1
;; Query time: 1 msec
;; SERVER: 192.168.50.1#53(192.168.50.1)
;; WHEN: Fri Mar 7 06:29:47 2014
;; MSG SIZE rcvd: 119
Here is what i got when i gave command as per your instruction in that server itself.
|
|
|
03-07-2014, 02:28 AM
|
#6
|
Member
Registered: Oct 2009
Distribution: Slackware
Posts: 534
|
Hmm.. You're right, it does check the local DNS.. But it seems that this is the actual return from it : "swift.gai.net.50.168.192.in-addr.arpa."
Could you check if the DNS zone configuration file for reverse LAN IPs is ok.. The problem seems to be there.. Actually, Are you sure you're not missing the final dot?
From what I gathered, your line should look like this:
Code:
3 IN PTR swift.gai.net.
P.S. Thanks for ignoring the '129' typo in my previous post...
|
|
1 members found this post helpful.
|
03-07-2014, 02:38 AM
|
#7
|
Member
Registered: Jul 2013
Posts: 213
Original Poster
Rep:
|
Quote:
Originally Posted by Smokey_justme
Hmm.. You're right, it does check the local DNS.. But it seems that this is the actual return from it : "swift.gai.net.50.168.192.in-addr.arpa."
Could you check if the DNS zone configuration file for reverse LAN IPs is ok.. The problem seems to be there.. Actually, Are you sure you're not missing the final dot?
From what I gathered, your line should look like this:
Code:
3 IN PTR swift.gai.net.
P.S. Thanks for ignoring the '129' typo in my previous post...
|
Thanks, Awsome knowledge.
It's solved. i was missing last dot when i was mapping ip to server name in reverse zone.
Marking it as solved.
Last edited by sachin.davra; 03-07-2014 at 02:38 AM.
Reason: solved.
|
|
|
All times are GMT -5. The time now is 01:49 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|