Re: lug-bg: novo - RESOLVE
ako ti menagirash domaina triabwa da si ponastroish nameservera oshte malko. osven fakta ,4e si opisal 4e zad emicron.tvskat.net stoi 213.16.56.140 triabwa da opishesh i obratnoto za rev-reverce . potarsi v nikoia tarsa4ka kak se nastroiva DNS server i obarni vnimanie na faila s ime ...in-addr.arpa ako ne namerish info kak se nastroiva DNS prati mi edin private email za da ne tormozim grupata ,4e tazi tema za 2 godini e diskutirana pone 10 pati , i az shte ti pratia docs. pak povtariam triabwa da imash vazmojnost da menagirash domaina ,za da ti sa validni promenite! georgi --- Nedelcho Petkov [EMAIL PROTECTED] wrote: Tova e parviqt mi post tuk i se nadqvam da ne oteh4a nqkoi s varposa si. Problema pri men ako izobshto moje da se razglejda kato problem e 4e iskam da razbera zashto v IRC ne moje da mi se resolve hosta a v www moje. Polu4avam interneta si 4rez DHCP server i sam s realno IP. hosta mi e emicron.tvskat.net koeto saotvetno resolira na 213.16.56.140. Izpolzvam Slackware kato distribuciq. naglasil sam si rc.inet1 i vsi4ko raboti strahotno pri boot DHCP servera reply. az polu4avam realen addres. Vaprosa mi e trqbva li az da puskam localen DNS server keshirasht za da moga da se resolv v IRC s tozi host a ne s IP nomera si. pri nslookup emicron.tvskat.net vsi4ko e ok. bukvalno .. ne e .. v /etc/resolv dns servera mi se setva avtomati4no ot DHCP-to. Predvaritelno blagodara na vsi4ki. Nedelcho Petkov __ Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: dns transffer based on view ?
veso, viarno e ,4e ima dosta talash v lista i e oteg4itelno , no vse pak ima momenti, v koito e polezen,taka 4e s podhodiashtia filter na incoming mail moje da si ostanesh vav staria i poleznia spisak , koito vsi4ki pomnim. :-) georgi --- Vesselin Kolev [EMAIL PROTECTED] wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Biah se otkazal da pisha v lista.. no tazi tema e interesna i shte spodelia __ Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
lug-bg: Local NAT to Proxy
Zdraveite, Opitvam se da si pusna Squid transparenten na Lokalnata mashina. Iskam s Iptables da redirektna kym lokalen port za da se keshira. No imam problemi: 1. Squida e konfiguriran za tansparent s pravilnite opcii i acl-i. 2. Probvam niakolko varianta Iptables bez nikakyv uspeh : iptables -t nat -A OUTPUT -d 0.0.0.0/0 -p tcp --dport 80 -j DNAT --to 127.0.0.1:8080 Znachi ako opitam s PREROUTING ne se poluchava (logichno). S gornoto paketite zanimavat kym SQUIDA no se vryshta che sym DENT ot proxy-to - mnogo stranno.Prinudih se da napisha http_access allow all i vypreki vsichko bez uspeh. V kernela imam kompilirano NAT of local connection. V dokumentaciata na Ipfilter e pisano slednoto: he NAT code allows you to insert DNAT rules in the OUTPUT chain, but this is not fully supported in 2.4 (it can be, but it requires a new configuration option, some testing, and a fair bit of coding, so unless someone contracts Rusty to write it, I wouldn't expect it soon). The current limitation is that you can only change the destination to the local machine (e.g. `j DNAT --to 127.0.0.1'), not to any other machine, otherwise the replies won't be translated correctly. Abe Vyobshte niakoi ima li opit s takyv tochno tip transparentno proxy, govoria kogato trafika idva izrichno ot lokalnata mashina i trebe da se nasochi kym proxy-to. Az ne uspiavam da go pusna... Todorin - http://www.MURA.bg -! A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Local NAT to Proxy
Todor Belev wrote: Zdraveite, Opitvam se da si pusna Squid transparenten na Lokalnata mashina. Iskam s Iptables da redirektna kym lokalen port za da se keshira. No imam problemi: 1. Squida e konfiguriran za tansparent s pravilnite opcii i acl-i. 2. Probvam niakolko varianta Iptables bez nikakyv uspeh : iptables -t nat -A OUTPUT -d 0.0.0.0/0 -p tcp --dport 80 -j DNAT --to 127.0.0.1:8080 Znachi ako opitam s PREROUTING ne se poluchava (logichno). iptables -t nat -A OUTPUT -p tcp --dport 80 -j REDIRECT --to-port 8080 Znachi testvah i go raboti, toest redirectva. OBACHE, shtom squida e na sashtata mashina toi shte se opitva da otvori nova konekcia, kam saita koito si mu kazal. Tyi kato tova shte stane na port 80 kernela pak shte redirectne paketa i t.n. Mislia si che na mashnata na koeto ti e proxy-to _za neia_ mai niama da mozhesh da nastroish prozrachno proxy. Ponezhe niamam proxy naokolo tazi teoria ne sam ia probval no zvuchi pravdopodno. Podal hack mozhe da e da nakarash squida da izpolzva opredelen pool localni portove za zaivkite primerno 1-2 i da napravish rule-to neshto ot sorta: iptables -t nat -A OUTPUT -p tcp --sport ! 1:2 \ --dport 80 -j REDIRECT --to-port 8080 No localnite potrebilite koito iskash da proxirash shte mogat da zaobikaliat proxyto. -- Georgi Chorbadzhiyski http://georgi.unixsol.org/ A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
Re: lug-bg: Local NAT to Proxy
On Sun, Jun 15, 2003 at 12:46:19AM +0300, Georgi Chorbadzhiyski wrote: Todor Belev wrote: Zdraveite, Opitvam se da si pusna Squid transparenten na Lokalnata mashina. Iskam s Iptables da redirektna kym lokalen port za da se keshira. No imam problemi: 1. Squida e konfiguriran za tansparent s pravilnite opcii i acl-i. 2. Probvam niakolko varianta Iptables bez nikakyv uspeh : iptables -t nat -A OUTPUT -d 0.0.0.0/0 -p tcp --dport 80 -j DNAT --to 127.0.0.1:8080 Znachi ako opitam s PREROUTING ne se poluchava (logichno). iptables -t nat -A OUTPUT -p tcp --dport 80 -j REDIRECT --to-port 8080 Znachi testvah i go raboti, toest redirectva. OBACHE, shtom squida e na sashtata mashina toi shte se opitva da otvori nova konekcia, kam saita koito si mu kazal. Tyi kato tova shte stane na port 80 kernela pak shte redirectne paketa i t.n. Mislia si che na mashnata na koeto ti e proxy-to _za neia_ mai niama da mozhesh da nastroish prozrachno proxy. Ponezhe niamam proxy naokolo tazi teoria ne sam ia probval no zvuchi pravdopodno. Podal hack mozhe da e da nakarash squida da izpolzva opredelen pool localni portove za zaivkite primerno 1-2 i da napravish rule-to neshto ot sorta: iptables -t nat -A OUTPUT -p tcp --sport ! 1:2 \ --dport 80 -j REDIRECT --to-port 8080 No localnite potrebilite koito iskash da proxirash shte mogat da zaobikaliat proxyto. Networking options --- IP: Netfilter Configuration --- Owner match support (EXPERIMENTAL) CONFIG_IP_NF_MATCH_OWNER: Packet owner matching allows you to match locally-generated packets based on who created them: the user, group, process or session. If you want to compile it as a module, say M here and read Documentation/modules.txt. If unsure, say `N'. -- Pav ,., ,``:'', Gain your human right of {o ! o} My GPG/PGP key is now available at privacy: use cryptography! ] -+- [ x-hkp://search.keyserver.net:11371. \ ! / `-' `shell$ gpg --keyserver x-hkp://search.keyserver.net:11371 --recv-key 164C028F` http://www.againsttcpa.com/index.shtml pgp0.pgp Description: PGP signature