Tom, Your /etc/dnsmasq.conf is not correct, it looks like you have "/mnt/kd/dnsmasq.conf" defined, overriding auto-generating dnsmasq.conf, and I suspect you don't want that.
1) Either remove or rename your /mnt/kd/dnsmasq.conf file. That allows the dnsmasq.conf to be automatically generated. 2) Remove LOCALDNS="no" 3) reboot That should do it. In general with 0.7, most people don't want LOCALDNS="no" as it disables the local caching DNS. And a small clarification to Darrick's comment, the Firewall is available with only a single interface, but it may be enabled/disabled via the Network tab. Lonnie On Jan 14, 2010, at 8:57 AM, Tom Chadwin wrote: > That's it. LOCALDNS="no" has fixed it. Many thanks. One question: why did my > other 0.7 box not have this issue - is it related to the fact that it has > both EXTIF and INTIF, while the one with the issue only has EXTIF? > > Thanks again for all the help > > Tom > > >> -----Original Message----- >> From: Darrick Hartman [mailto:[email protected]] >> Sent: 14 January 2010 14:43 >> To: [email protected]; AstLinux Users Mailing List >> Subject: Re: [Astlinux-users] 0.7 GUI Check for new firmware >> gives"Noversion available" >> >> Tom, >> >> There was a change in 0.7 to affect this behavior. >> >> So called 'localdns' is the default. This is why >> /etc/resolv.conf shows the nameserver 127.0.0.1. >> >> If you want to revert this to the old behavior add >> LOCALDNS="no" to your user.conf file (in /mnt/kd/rc.conf.d/ >> then reboot). >> >> This still should result in external DNS working though. Is >> the dnsmasq process running on the Astlinux box? >> >> The so-called 'pbx-only' mode changes another item too. The >> firewall is always on. So you'll need to configure the >> firewall. This is most easily done from the web interface. >> You don't need an internal interface configured to set up the >> firewall. If you're upgrading from a 0.6.x device, the >> firewall tab should prompt you to update the firewall config files. >> >> If you're configuring the firewall from the command line, do >> not directly edit >> /mnt/kd/arno-iptables-firewall/firewall.conf. The values you >> wish to set should be set in a .conf file in the >> /mnt/kd/rc.conf.d/ directory. The web interface will do the >> right thing for you. >> >> Darrick >> >> On 01/14/2010 06:13 AM, Tom Chadwin wrote: >>> haltwhistlepbx ~ # cat /etc/resolv.conf search nnpa.com nameserver >>> 127.0.0.1 haltwhistlepbx ~ # cat /etc/resolv-extern.conf nameserver >>> 10.8.243.21 nameserver 10.8.243.22 >>> >>> On a 0.6.8 box with a v similar network topology (a >> different site), I >>> get the following. >>> >>> ingrampbx ~ # cat /etc/resolv.conf >>> nameserver 10.8.243.21 >>> nameserver 10.8.243.22 >>> ingrampbx ~ # cat /etc/resolv-extern.conf >>> cat: can't open '/etc/resolv-extern.conf': No such file or directory >>> >>> So, have I missed some way in which I can set the 0.7 box >> into "PBX only" >>> mode, or something (if I recall some mention of that >> somewhere)? I am >>> only using the one NIC on it, so I've not set up any internal >>> interfaces in the GUI. >>> >>> Thanks for all the help >>> >>> Tom >>> >>> PS Please do not read much into "nnpa.com". That was used as our >>> internal Windows domain some time before I started to work here, >>> despite the fact that we do not own nnpa.com as a domain >> name - leads >>> to some confusion, I can tell you. Both these boxes specify >> nnpa.com >>> as their domain in the GUI Network tab. >>> >>> >>>> -----Original Message----- >>>> From: Lonnie Abelbeck [mailto:[email protected]] >>>> Sent: 14 January 2010 11:56 >>>> To: AstLinux Users Mailing List >>>> Cc: Tom Chadwin >>>> Subject: Re: [Astlinux-users] 0.7 GUI Check for new firmware >>>> gives"Noversion available" >>>> >>>> Tom, >>>> >>>> what does... >>>> >>>> $ cat /etc/resolv.conf >>>> >>>> and >>>> >>>> $ cat /etc/resolv-extern.conf >>>> >>>> yield? DNS server address look correct? >>>> >>>> Are you using DHCP or manually assigning your External >> interface's IP? >>>> >>>> Lonnie >>>> >>>> On Jan 14, 2010, at 5:40 AM, Tom Chadwin wrote: >>>> >>>>> OK, yes, the box cannot resolve DNS names. But I have no >>>> idea why. It >>>>> is behind NAT, with only EXTIF defined (no INTIF), its >>>> gateway is the >>>>> local firewall, which maintains a VPN to our head office, >> where the >>>>> DNS servers are. I can ping the DNS servers from the >>>> astlinux box. I've tried rebooting. >>>>> >>>>> Can anyone help? >>>>> >>>>> Tom >>>>> >>>>> >>>>>> -----Original Message----- >>>>>> From: Lonnie Abelbeck [mailto:[email protected]] >>>>>> Sent: 14 January 2010 11:10 >>>>>> To: AstLinux Users Mailing List >>>>>> Cc: Tom Chadwin >>>>>> Subject: Re: [Astlinux-users] 0.7 GUI Check for new >> firmware gives >>>>>> "Noversion available" >>>>>> >>>>>> Tom, >>>>>> >>>>>> This indicates that retrieving the 'ver' file in that >>>> repository, for >>>>>> that target, was unsuccessful. >>>>>> >>>>>> This was probably a temporary network or server >>>>>> (mirror.astlinux.org) problem in your case. >>>>>> >>>>>> I just tried it and it worked fine for the net5501 target. >>>>>> >>>>>> Lonnie >> >> >> -- >> Darrick Hartman >> DJH Solutions, LLC >> http://www.djhsolutions.com >> >> -------------------------------------------------------------- >> ---------------- >> Throughout its 18-year history, RSA Conference consistently >> attracts the world's best and brightest in the field, >> creating opportunities for Conference attendees to learn >> about information security's most important issues through >> interactions with peers, luminaries and emerging and >> established companies. >> http://p.sf.net/sfu/rsaconf-dev2dev >> _______________________________________________ >> Astlinux-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/astlinux-users >> >> Donations to support AstLinux are graciously accepted via >> PayPal to [email protected]. >> > > > ------------------------------------------------------------------------------ > Throughout its 18-year history, RSA Conference consistently attracts the > world's best and brightest in the field, creating opportunities for Conference > attendees to learn about information security's most important issues through > interactions with peers, luminaries and emerging and established companies. > http://p.sf.net/sfu/rsaconf-dev2dev > _______________________________________________ > Astlinux-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/astlinux-users > > Donations to support AstLinux are graciously accepted via PayPal to > [email protected]. > > ------------------------------------------------------------------------------ Throughout its 18-year history, RSA Conference consistently attracts the world's best and brightest in the field, creating opportunities for Conference attendees to learn about information security's most important issues through interactions with peers, luminaries and emerging and established companies. http://p.sf.net/sfu/rsaconf-dev2dev _______________________________________________ Astlinux-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [email protected].
