Richard Vaughan wrote:
>
> Rodney,
>
> I'm not familiar with the tcpdump utility so I've attached the output from
> doing a ping and then a telnet. I would appreciate it if you can point me in
> the right direction for understanding the tool. I've also attached the
> contents of my /var/log/messages file from the time I did the telnet, in
> case that helps any.
>
17:06:38.243626 blade.1052 > l.root-servers.net.domain: 57968 (43)
^^^^^^^^^^^^^^^ ^^^^^ ^^^^ ^^^^^^^^^^^^^^^^^^ ^^^^^^
timestamp | | dest machine |
src machine | dest port
src port
domain is port 53, this is indeed dns. You can get the name to number mappings
out of the /etc/services file. The src port is dynamically assigned by the
machine sending the packet, it is usually a number greater than 1024. The
dest port is the service port. Processes listen on these ports for connections
from other machines.
It looks like your setup is working fine. You may want to change your local
DNS server to be a forwarding only DNS server. It will then dial right away
if the request is not local
17:06:38.263626 sentinel.cyberdine.com.1077 > blade.domain: 10528+ (43)
17:06:38.263626 blade.1052 > f.root-servers.net.domain: 57974 (43)
17:06:39.243626 blade.1052 > h.root-servers.net.domain: 57972 (44)
17:06:39.243626 blade.1052 > b.root-servers.net.domain: 57970 (43)
17:06:39.243626 blade.1052 > 198.41.0.4.domain: 57963 (44)
17:06:39.533626 win98.1031 > blade.telnet: P 361867:361870(3) ack 2045368956 win
8454 (DF)
17:06:39.533626 blade.telnet > win98.1031: P 1:28(27) ack 3 win 32736 (DF)
17:06:39.653626 win98.1031 > blade.telnet: . ack 28 win 8427 (DF)
> I was slightly mistaken previously. The machine is indeed forcing the
> dial-up connection up. But not until after 2/3 minutes. I suppose this could
> be because the box is running an internal DNS server, and it's waiting for
> that to time out before trying the next one in the sequence (ISP DNS
> server).
>
> Thanks,
>
> Richard
>
> ----- Original Message -----
> From: Rodney Holm <[EMAIL PROTECTED]>
> To: Richard Vaughan <[EMAIL PROTECTED]>
> Cc: <[EMAIL PROTECTED]>
> Sent: Tuesday, March 16, 1999 4:35 PM
> Subject: Re: More DialD problems
>
> >Try doing some tcpdumps on the gateway machine:
> ># tcpdump -i eth0 host <ip-of-dns-squid-box>
> >
> >and then try surfing or telneting to see if the packets are going to the
> >right place.
> >
> >Turn on debug 1 in diald, this should show any rules accepted or ignored in
> >a log file. It depends on your configuration which log file but try
> >/var/log/messages or /var/log/diald????
> >
> >--
> >---------------------------------------------------------------------------
> ----
> >Rodney D. Holm [EMAIL PROTECTED]
> >Apexx Technology, Inc. http://www.apexxtech.com
> >---------------------------------------------------------------------------
> ----
>
> --------------------------------------------------------------------------------
> Name: telnet
> telnet Type: unspecified type (application/octet-stream)
> Encoding: quoted-printable
>
> Name: ping
> ping Type: unspecified type (application/octet-stream)
> Encoding: quoted-printable
>
> Name: messages
> messages Type: unspecified type (application/octet-stream)
> Encoding: quoted-printable
--
-------------------------------------------------------------------------------
Rodney D. Holm [EMAIL PROTECTED]
Apexx Technology, Inc. http://www.apexxtech.com
-------------------------------------------------------------------------------
-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]
