I've successfully configured tinydns to resolve internal machines, but I'd like to extend this functionality.Here's how I did it with tinydns
At present, my web and mailserver is in a DMZ (bering). No problem getting access from outside. But of course, trying to connect from inside by domain name simply resolves to the public IP. I get nowhere (should I be able to do this?).
What I'd like to do is add the public domain name to the private file in tinydns and point to the private IP of the server in the DMZ. In other words, intercept dns requests for this domain. But I'm not getting very far with the syntax. I'm not even sure this is possible as I haven't been able to find an example with this sort of configuration (multiple domains). It's also possible that I have the 'old' external IP cached somewhere and my tests are not correct as a result.
Can someone post the typical private data file for this sort of configuration? Or confirm that it can be done?
Thanks,
I call the 1machine name by the name in the private network and it works.
in /etc/tinydns-private/root/data
.private.network::localhost .1.168.192.in-addr.arpa::localhost =hanroute.private.network:192.168.1.254 =machine1.private.network:192.168.1.1 =machine 2.private.network:192.168.1.2
.dmz.network::localhost .2.168.192.in-addr.arpa::localhost =dmzmachine.private.network:192.168.2.7
Notice that I list a dmz.network, but if I call the box dmzmachine.dmz.network it doesn't work. If I name it as private.network it does. May not be pretty, but it worked for me. Perhaps it is not the right way to do this . . . .
Of course you need to put all the proper forwarding stuff in the rules file if you use shorewall
ACCEPT loc dmz:192.168.2.7 all
------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
