Sim, como passei na email anterior. Se executar o comando ping ftp , www, gw , ... no dominio.com.br funcoina certinho do firewall. So nao funciona de outra maquina da rede.
Att Gustavo que usa meu firewall filial 2008/6/20 Miguel Da Silva - Centro de Matemática <[EMAIL PROTECTED]>: > gunix escribió: > >> Fiz um teste com o dig. Nao sei se usei corretamente, mas veija ai o que >> fiz. >> >> No meu server da minha rede digitei: >> >> dig @localhost +trace ftp.dominio.com.br <http://ftp.dominio.com.br/> >> ; <<>> DiG 9.3.4 <<>> @localhost +trace ftp.dominio.com.br < >> http://ftp.dominio.com.br/> >> ; (1 server found) >> ;; global options: printcmd >> . 431567 IN NS A.ROOT-SERVERS.NET < >> http://a.root-servers.net/>. >> . 431567 IN NS B.ROOT-SERVERS.NET < >> http://b.root-servers.net/>. >> . 431567 IN NS C.ROOT-SERVERS.NET < >> http://c.root-servers.net/>. >> . 431567 IN NS D.ROOT-SERVERS.NET < >> http://d.root-servers.net/>. >> . 431567 IN NS E.ROOT-SERVERS.NET < >> http://e.root-servers.net/>. >> . 431567 IN NS F.ROOT-SERVERS.NET < >> http://f.root-servers.net/>. >> . 431567 IN NS G.ROOT-SERVERS.NET < >> http://g.root-servers.net/>. >> . 431567 IN NS H.ROOT-SERVERS.NET < >> http://h.root-servers.net/>. >> . 431567 IN NS I.ROOT-SERVERS.NET < >> http://i.root-servers.net/>. >> . 431567 IN NS J.ROOT-SERVERS.NET < >> http://j.root-servers.net/>. >> . 431567 IN NS K.ROOT-SERVERS.NET < >> http://k.root-servers.net/>. >> . 431567 IN NS L.ROOT-SERVERS.NET < >> http://l.root-servers.net/>. >> . 431567 IN NS M.ROOT-SERVERS.NET < >> http://m.root-servers.net/>. >> ;; Received 500 bytes from >> 127.0.0.1#53(127.0.0.1)<http://127.0.0.1#53%28127.0.0.1%29>< >> http://127.0.0.1/#53%28127.0.0.1%29> in 0 ms >> >> br. 172800 IN NS A.DNS.br < >> http://a.dns.br/>. >> br. 172800 IN NS B.DNS.br < >> http://b.dns.br/>. >> br. 172800 IN NS C.DNS.br < >> http://c.dns.br/>. >> br. 172800 IN NS D.DNS.br < >> http://d.dns.br/>. >> br. 172800 IN NS E.DNS.br < >> http://e.dns.br/>. >> ;; Received 229 bytes from >> 198.41.0.4#53(A.ROOT-SERVERS.NET)<http://198.41.0.4#53%28A.ROOT-SERVERS.NET%29>< >> http://198.41.0.4/#53%28A.ROOT-SERVERS.NET%29> in 194 m >> >> dominio.com.br <http://dominio.com.br/>. 86400 IN NS >> ns1.dominio.com.br <http://ns1.dominio.com.br/>. >> dominio.com.br <http://dominio.com.br/>. 86400 IN NS >> ns2.dominio.com.br <http://ns2.dominio.com.br/>. >> ;; Received 105 bytes from >> 200.160.0.10#53(A.DNS.br)<http://200.160.0.10#53%28A.DNS.br%29>< >> http://200.160.0.10/#53%28A.DNS.br%29> in 45 ms >> >> ftp.dominio.com.br <http://ftp.dominio.com.br/>. 604800 IN A >> 200.170.15.100 <http://200.170.15.100/> >> dominio.com.br <http://dominio.com.br/>. 604800 IN NS >> localhost. >> ;; Received 92 bytes from >> 200.172.237.170#53(ns1.prosoftvr.com.br)<http://200.172.237.170#53%28ns1.prosoftvr.com.br%29>< >> http://200.172.237.170/#53%28ns1.prosoftvr.com.br%29> in 72 ms >> >> >> O Dominio em questao registrado no registro.br <http://registro.br/>, >> esta hospedado em um servidor da matriz. >> Executei o comando acima do firewall da filial. >> Funcionou perfeitamente inclusive o comando ping. >> >> Executando o mesmo comando de uma mauqina na rede da filial que usa o dns >> do firewall da o seguinte resultado. >> Nao sei se usei ele corretamente, mas agradeço as sugestões e dicas. >> >> dig @10.1.0.1 <http://10.1.0.1/> +trace ftp.dominio.com.br < >> http://ftp.dominio.com.br/> >> >> ; <<>> DiG 9.3.4 <<>> @10.1.0.1 <http://10.1.0.1/> +trace >> ftp.dominio.com.br <http://ftp.dominio.com.br/> >> ; (1 server found) >> ;; global options: printcmd >> . 431270 IN NS L.ROOT-SERVERS.NET < >> http://l.root-servers.net/>. >> . 431270 IN NS M.ROOT-SERVERS.NET < >> http://m.root-servers.net/>. >> . 431270 IN NS A.ROOT-SERVERS.NET < >> http://a.root-servers.net/>. >> . 431270 IN NS B.ROOT-SERVERS.NET < >> http://b.root-servers.net/>. >> . 431270 IN NS C.ROOT-SERVERS.NET < >> http://c.root-servers.net/>. >> . 431270 IN NS D.ROOT-SERVERS.NET < >> http://d.root-servers.net/>. >> . 431270 IN NS E.ROOT-SERVERS.NET < >> http://e.root-servers.net/>. >> . 431270 IN NS F.ROOT-SERVERS.NET < >> http://f.root-servers.net/>. >> . 431270 IN NS G.ROOT-SERVERS.NET < >> http://g.root-servers.net/>. >> . 431270 IN NS H.ROOT-SERVERS.NET < >> http://h.root-servers.net/>. >> . 431270 IN NS I.ROOT-SERVERS.NET < >> http://i.root-servers.net/>. >> . 431270 IN NS J.ROOT-SERVERS.NET < >> http://j.root-servers.net/>. >> . 431270 IN NS K.ROOT-SERVERS.NET < >> http://k.root-servers.net/>. >> ;; Received 500 bytes from >> 10.1.0.1#53(10.1.0.1)<http://10.1.0.1#53%2810.1.0.1%29>< >> http://10.1.0.1/#53%2810.1.0.1%29> in 1 ms >> >> ;; connection timed out; no servers could be reached >> >> >> na opção em um dos computadores da rede, usei o @10.1.0.1 < >> http://10.1.0.1/> que é o ip da rede onde as maquinas usam o DNS. O >> Firewall da filial. >> >> Att >> Gustavo >> > > Epa!!! Parece que aqui temos uma pista... > > ;; connection timed out; no servers could be reached > > Seu firewall está permitindo as conexões ao DNS da matriz?! Aliás, ele > mesmo pode se conectar a este DNS?! > > > Até. > -- > Miguel Da Silva > Administrador de Sistemas > Centro de Matemática - http://www.cmat.edu.uy > Facultad de Ciencias - http://www.fcien.edu.uy > Universidad de la República - http://www.rau.edu.uy > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact > [EMAIL PROTECTED] > >
