Re: lug-bg: novo - RESOLVE

[gggg ggg]

ako ti menagirash domaina triabwa da si ponastroish
nameservera oshte malko.
osven fakta ,4e si opisal 4e zad emicron.tvskat.net
stoi 213.16.56.140  triabwa da opishesh i obratnoto za
rev-reverce .
potarsi v nikoia tarsa4ka kak se nastroiva DNS server
i obarni vnimanie na faila s ime ...in-addr.arpa

ako ne namerish info kak se nastroiva DNS prati mi
edin private email za da ne tormozim grupata ,4e tazi
tema za 2 godini e diskutirana pone 10 pati , i az
shte ti pratia docs.

pak povtariam triabwa da imash vazmojnost da
menagirash domaina ,za da ti sa validni promenite!

georgi

--- Nedelcho Petkov [EMAIL PROTECTED] wrote:
 Tova e parviqt mi post tuk i se nadqvam da ne oteh4a
 nqkoi s varposa si. 
 Problema pri men ako izobshto moje da se razglejda
 kato problem e 4e 
 iskam da razbera zashto v IRC ne moje da mi se
 resolve hosta a v www 
 moje. Polu4avam interneta si 4rez DHCP server i sam
 s realno IP. hosta 
 mi e emicron.tvskat.net koeto saotvetno resolira na
 213.16.56.140. 
 Izpolzvam Slackware kato distribuciq. naglasil sam
 si rc.inet1 i vsi4ko 
 raboti strahotno pri boot DHCP servera reply. az
 polu4avam realen 
 addres. Vaprosa mi e trqbva li az da puskam localen
 DNS server 
 keshirasht za da moga da se resolv v IRC s tozi host
 a ne s IP nomera 
 si. pri nslookup emicron.tvskat.net vsi4ko e ok.
 bukvalno .. ne e .. v 
 /etc/resolv dns servera mi se setva avtomati4no ot
 DHCP-to.
 
 Predvaritelno blagodara na vsi4ki.
 Nedelcho Petkov


__
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
http://sbc.yahoo.com

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

Re: lug-bg: dns transffer based on view ?

[gggg ggg]

veso,
viarno e ,4e ima dosta talash v lista i e oteg4itelno
, no vse pak ima momenti, v koito e polezen,taka 4e s
podhodiashtia filter na incoming mail moje da si
ostanesh vav staria i poleznia spisak , koito vsi4ki
pomnim. :-)

georgi


--- Vesselin Kolev [EMAIL PROTECTED] wrote:
 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1
 
 Biah se otkazal da pisha v lista.. no tazi tema e
 interesna i shte spodelia


__
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
http://sbc.yahoo.com

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

lug-bg: Local NAT to Proxy

[Todor Belev]

Zdraveite,
Opitvam se da si pusna Squid transparenten na Lokalnata mashina.
Iskam s Iptables da redirektna kym lokalen port za da se keshira.
No imam problemi:
1. Squida e konfiguriran za tansparent s pravilnite opcii i acl-i.
2. Probvam niakolko varianta Iptables bez nikakyv uspeh :
iptables -t nat -A OUTPUT -d 0.0.0.0/0   -p tcp --dport 80 -j DNAT --to 127.0.0.1:8080
Znachi ako opitam s PREROUTING ne se poluchava (logichno).
S gornoto paketite zanimavat kym SQUIDA no se vryshta che sym DENT ot proxy-to - mnogo 
stranno.Prinudih se da napisha http_access allow all i vypreki vsichko bez uspeh.
V kernela imam kompilirano 
NAT of local connection.
V dokumentaciata na Ipfilter e pisano slednoto:

he NAT code allows you to insert DNAT rules in the OUTPUT chain, but this is not fully 
supported in 2.4 (it can be, but it requires a new configuration option, some testing, 
and a fair bit of coding, so unless someone contracts Rusty to write it, I wouldn't 
expect it soon).

The current limitation is that you can only change the destination to the local 
machine (e.g. `j DNAT --to 127.0.0.1'), not to any other machine, otherwise the 
replies won't be translated correctly.


Abe Vyobshte niakoi ima li opit s takyv tochno tip transparentno proxy, govoria kogato 
trafika idva izrichno ot lokalnata mashina i trebe da se nasochi kym proxy-to.
Az ne uspiavam da go pusna...

Todorin

-
http://www.MURA.bg -!

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

Re: lug-bg: Local NAT to Proxy

[Georgi Chorbadzhiyski]

Todor Belev wrote:
Zdraveite,
Opitvam se da si pusna Squid transparenten na Lokalnata mashina.
Iskam s Iptables da redirektna kym lokalen port za da se keshira.
No imam problemi:
1. Squida e konfiguriran za tansparent s pravilnite opcii i acl-i.
2. Probvam niakolko varianta Iptables bez nikakyv uspeh :
iptables -t nat -A OUTPUT -d 0.0.0.0/0   -p tcp --dport 80 -j DNAT --to 127.0.0.1:8080
Znachi ako opitam s PREROUTING ne se poluchava (logichno).
iptables -t nat -A OUTPUT -p tcp --dport 80 -j REDIRECT --to-port 8080

Znachi testvah i go raboti, toest redirectva. OBACHE, shtom squida e
na sashtata mashina toi shte se opitva da otvori nova konekcia, kam
saita koito si mu kazal. Tyi kato tova shte stane na port 80 kernela
pak shte redirectne paketa i t.n. Mislia si che na mashnata na koeto
ti e proxy-to _za neia_ mai niama da mozhesh da nastroish prozrachno
proxy. Ponezhe niamam proxy naokolo tazi teoria ne sam ia probval no
zvuchi pravdopodno.
Podal hack mozhe da e da nakarash squida da izpolzva opredelen pool
localni portove za zaivkite primerno 1-2 i da napravish
rule-to neshto ot sorta:
iptables -t nat -A OUTPUT -p tcp --sport ! 1:2 \
  --dport 80 -j REDIRECT --to-port 8080
No localnite potrebilite koito iskash da proxirash shte mogat da
zaobikaliat proxyto.
--
Georgi Chorbadzhiyski
http://georgi.unixsol.org/

A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html

Re: lug-bg: Local NAT to Proxy

[Pavel Minev Penev]

On Sun, Jun 15, 2003 at 12:46:19AM +0300, Georgi Chorbadzhiyski wrote:
 Todor Belev wrote:
 Zdraveite,
 Opitvam se da si pusna Squid transparenten na Lokalnata mashina.
 Iskam s Iptables da redirektna kym lokalen port za da se keshira.
 No imam problemi:
 1. Squida e konfiguriran za tansparent s pravilnite opcii i acl-i.
 2. Probvam niakolko varianta Iptables bez nikakyv uspeh :
 iptables -t nat -A OUTPUT -d 0.0.0.0/0   -p tcp --dport 80 -j DNAT --to 
 127.0.0.1:8080
 Znachi ako opitam s PREROUTING ne se poluchava (logichno).
 
 iptables -t nat -A OUTPUT -p tcp --dport 80 -j REDIRECT --to-port 8080
 
 Znachi testvah i go raboti, toest redirectva. OBACHE, shtom squida e
 na sashtata mashina toi shte se opitva da otvori nova konekcia, kam
 saita koito si mu kazal. Tyi kato tova shte stane na port 80 kernela
 pak shte redirectne paketa i t.n. Mislia si che na mashnata na koeto
 ti e proxy-to _za neia_ mai niama da mozhesh da nastroish prozrachno
 proxy. Ponezhe niamam proxy naokolo tazi teoria ne sam ia probval no
 zvuchi pravdopodno.
 
 Podal hack mozhe da e da nakarash squida da izpolzva opredelen pool
 localni portove za zaivkite primerno 1-2 i da napravish
 rule-to neshto ot sorta:
 
 iptables -t nat -A OUTPUT -p tcp --sport ! 1:2 \
   --dport 80 -j REDIRECT --to-port 8080
 
 No localnite potrebilite koito iskash da proxirash shte mogat da
 zaobikaliat proxyto.

Networking options  ---
IP: Netfilter Configuration  ---
Owner match support (EXPERIMENTAL)

CONFIG_IP_NF_MATCH_OWNER:
Packet owner matching allows you to match locally-generated packets
based on who created them: the user, group, process or session.
If you want to compile it as a module, say M here and read
Documentation/modules.txt.  If unsure, say `N'.  
-- 
Pav
 ,.,
   ,``:'',
Gain your human right of   {o ! o}  My GPG/PGP key is now available at
privacy: use cryptography! ] -+- [  x-hkp://search.keyserver.net:11371.
\ ! /
 `-'
`shell$ gpg --keyserver x-hkp://search.keyserver.net:11371 --recv-key 164C028F`

http://www.againsttcpa.com/index.shtml


pgp0.pgp
Description: PGP signature