LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 08-08-2006, 03:18 PM   #1
Fluggo
Member
 
Registered: Aug 2002
Location: Sweden
Distribution: Slackware
Posts: 30

Rep: Reputation: 15
SSH tcp_wrapper and DNS resolving


I have a slackware 10.2 box with SSHD running on port 22 using tcp_wrapper. The problem is that I can't connect to it if I write in a domainname instead of an IP in hosts.allow. Is this a common problem?
Tried both .exampledomain.com and exampledomain.com
No difference.
And as my domain is on a dynamic ip I don't want to add it with the ip in the host file. I have the box at work so I can check the exact error message in /var/logs/system tomorrow..

I can both ping and browse the web at the box so my dns server is resolving adresses correctly for that.

Any ideas ?
 
Old 08-08-2006, 03:53 PM   #2
drkstr
Senior Member
 
Registered: Feb 2006
Location: Seattle, WA: USA
Distribution: Slackware 11.0
Posts: 1,191

Rep: Reputation: 45
Is the host name in your hosts.allow on the server the same as the host name in the /etc/hosts on the client? Perhaps the client is not sending the correct domain so it's being denied by the server.

regards
...drkstr
 
Old 08-08-2006, 04:08 PM   #3
Fluggo
Member
 
Registered: Aug 2002
Location: Sweden
Distribution: Slackware
Posts: 30

Original Poster
Rep: Reputation: 15
The client is behind a NAT:ed lan and the domain is registered to the clients external ip. I don't know if the computer is sending computername.exampledomain.com or just exampledomain.com so thats why i tried .exampledomain.com in hosts.allow
 
Old 08-08-2006, 04:18 PM   #4
bsdunix
Senior Member
 
Registered: May 2006
Distribution: BeOS, BSD, Caldera, CTOS, Debian, LFS, Mac, Mandrake, Red Hat, Slackware, Solaris, SuSE
Posts: 1,761

Rep: Reputation: 80
According to 'man 5 hosts_access' you should be able to use sshd : exampledomain.com or sshd : .exampledomain.com in the /etc/hosts.allow file.

http://linuxhelp.blogspot.com/2005/1...ure-linux.html

You say your domain is on a dynamic IP address; are you using dnsdyn? If you are, have you tried exampledomain.dnsdyn.net in the hosts.allow file?
 
Old 08-08-2006, 04:38 PM   #5
drkstr
Senior Member
 
Registered: Feb 2006
Location: Seattle, WA: USA
Distribution: Slackware 11.0
Posts: 1,191

Rep: Reputation: 45
From the client box, go to
http://www.displaymyhostname.com/
Does it show the DNS set host name or your ISP assigned host name? Mine shows the ISP's host name for my computer since I have not set up a full DNS server on my Slackbox. When I go to the same site from a box behind a correctly configured network, it displays the correct host.domain.

Could this be what's causing your problem?

regards,
...drkstr
 
Old 08-08-2006, 04:53 PM   #6
Fluggo
Member
 
Registered: Aug 2002
Location: Sweden
Distribution: Slackware
Posts: 30

Original Poster
Rep: Reputation: 15
It just shows the clients external ip. So this is the problem. Found this here at LQ.

"You can change your /etc/ssh/sshd_config to not do reverse dns lookup, It could also be that your NAT has no reverse record."

Although this solves the problem I know it's not a good idea. I'm not using Dyndns but a similar service where I have bought a domainname.

DNS setup like this at domain provider.
exampledomain.com points to clients external ip (A record)
*.exampledomain.com points to exampledomain.com (CNAME)

Seems like the clients ISP needs to enable reverse dns to the clients ip for it to work ? Or has this something to do with the clients domainproviders dns ?

Last edited by Fluggo; 08-08-2006 at 04:54 PM.
 
Old 08-08-2006, 05:35 PM   #7
drkstr
Senior Member
 
Registered: Feb 2006
Location: Seattle, WA: USA
Distribution: Slackware 11.0
Posts: 1,191

Rep: Reputation: 45
Well I am by no means an expert on DNS, but I think you have to properly configure a DNS server on your clients network (with BIND and all that nice stuff). Is your client behind another Linux router? I never bothered doing it on my newtwork since I'm not really hosting anything profesional. I just use domain forwarding like you have set up. I hear this can be a bit of a chore, but might be nice to have.

regards,
...drkstr
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Resolving of site name DNS Artik Linux - Networking 1 05-18-2005 04:58 PM
DNS Resolving sarukie Linux - Networking 1 11-22-2004 11:41 AM
/etc/hosts resolving before DNS resolving ? markraem Linux - Networking 4 11-02-2003 05:54 AM
DNS not resolving ElementNine Linux - Networking 5 09-30-2003 07:42 AM
DNS isn't resolving. member57 Linux - Networking 3 07-15-2003 01:50 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 06:13 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration