Slackware This Forum is for the discussion of Slackware Linux.
|
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
08-08-2006, 03:18 PM
|
#1
|
Member
Registered: Aug 2002
Location: Sweden
Distribution: Slackware
Posts: 30
Rep:
|
SSH tcp_wrapper and DNS resolving
I have a slackware 10.2 box with SSHD running on port 22 using tcp_wrapper. The problem is that I can't connect to it if I write in a domainname instead of an IP in hosts.allow. Is this a common problem?
Tried both .exampledomain.com and exampledomain.com
No difference.
And as my domain is on a dynamic ip I don't want to add it with the ip in the host file. I have the box at work so I can check the exact error message in /var/logs/system tomorrow..
I can both ping and browse the web at the box so my dns server is resolving adresses correctly for that.
Any ideas ?
|
|
|
08-08-2006, 03:53 PM
|
#2
|
Senior Member
Registered: Feb 2006
Location: Seattle, WA: USA
Distribution: Slackware 11.0
Posts: 1,191
Rep:
|
Is the host name in your hosts.allow on the server the same as the host name in the /etc/hosts on the client? Perhaps the client is not sending the correct domain so it's being denied by the server.
regards
...drkstr
|
|
|
08-08-2006, 04:08 PM
|
#3
|
Member
Registered: Aug 2002
Location: Sweden
Distribution: Slackware
Posts: 30
Original Poster
Rep:
|
The client is behind a NAT:ed lan and the domain is registered to the clients external ip. I don't know if the computer is sending computername.exampledomain.com or just exampledomain.com so thats why i tried .exampledomain.com in hosts.allow
|
|
|
08-08-2006, 04:18 PM
|
#4
|
Senior Member
Registered: May 2006
Distribution: BeOS, BSD, Caldera, CTOS, Debian, LFS, Mac, Mandrake, Red Hat, Slackware, Solaris, SuSE
Posts: 1,761
Rep:
|
According to 'man 5 hosts_access' you should be able to use sshd : exampledomain.com or sshd : .exampledomain.com in the /etc/hosts.allow file.
http://linuxhelp.blogspot.com/2005/1...ure-linux.html
You say your domain is on a dynamic IP address; are you using dnsdyn? If you are, have you tried exampledomain.dnsdyn.net in the hosts.allow file?
|
|
|
08-08-2006, 04:38 PM
|
#5
|
Senior Member
Registered: Feb 2006
Location: Seattle, WA: USA
Distribution: Slackware 11.0
Posts: 1,191
Rep:
|
From the client box, go to
http://www.displaymyhostname.com/
Does it show the DNS set host name or your ISP assigned host name? Mine shows the ISP's host name for my computer since I have not set up a full DNS server on my Slackbox. When I go to the same site from a box behind a correctly configured network, it displays the correct host.domain.
Could this be what's causing your problem?
regards,
...drkstr
|
|
|
08-08-2006, 04:53 PM
|
#6
|
Member
Registered: Aug 2002
Location: Sweden
Distribution: Slackware
Posts: 30
Original Poster
Rep:
|
It just shows the clients external ip. So this is the problem. Found this here at LQ.
"You can change your /etc/ssh/sshd_config to not do reverse dns lookup, It could also be that your NAT has no reverse record."
Although this solves the problem I know it's not a good idea. I'm not using Dyndns but a similar service where I have bought a domainname.
DNS setup like this at domain provider.
exampledomain.com points to clients external ip (A record)
*.exampledomain.com points to exampledomain.com (CNAME)
Seems like the clients ISP needs to enable reverse dns to the clients ip for it to work ? Or has this something to do with the clients domainproviders dns ?
Last edited by Fluggo; 08-08-2006 at 04:54 PM.
|
|
|
08-08-2006, 05:35 PM
|
#7
|
Senior Member
Registered: Feb 2006
Location: Seattle, WA: USA
Distribution: Slackware 11.0
Posts: 1,191
Rep:
|
Well I am by no means an expert on DNS, but I think you have to properly configure a DNS server on your clients network (with BIND and all that nice stuff). Is your client behind another Linux router? I never bothered doing it on my newtwork since I'm not really hosting anything profesional. I just use domain forwarding like you have set up. I hear this can be a bit of a chore, but might be nice to have.
regards,
...drkstr
|
|
|
All times are GMT -5. The time now is 06:13 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|