Re: [pfSense-discussion] Allowing multiple IPs for the same hostname in the WebGUI
On Wednesday 04 April 2007 20:26:11 Bill Marquette wrote: > On 4/4/07, Fabian Steiner <[EMAIL PROTECTED]> wrote: > > Hello! > > > > On Wednesday 04 April 2007 16:53:25 Bill Marquette wrote: > > > Patches are almost always welcome. I'd suggest in this case that you > > > still allow for the checking of duplicate host names and and just > > > extend the edit screen to allow multiple hostnames in the way you > > > want. Then check for it in the backend and launch dnsmasq in the > > > appropriate way. > > > > Ok, I will see what I can do. However, I would need a CVS working copy > > then. What would be the exact command? I am not that familiar with CVS, > > you know. > > http://wiki.pfsense.com/wikka.php?wakka=pfSenseHome has developer info. Thanks - this page helped me a lot getting started. My patches against HEAD. I would be looking forward to seeing them committed. Cheers, Fabian --- services.inc.orig 2007-04-04 21:37:18.0 +0200 +++ services.inc 2007-04-04 22:49:36.0 +0200 @@ -625,7 +625,7 @@ fclose($fd); /* start dnsmasq */ - mwexec("/usr/local/sbin/dnsmasq --conf-file=" . $g['varetc_path'] . "/dnsmasq.conf"); + mwexec("/usr/local/sbin/dnsmasq -y --conf-file=" . $g['varetc_path'] . "/dnsmasq.conf"); if($g['booting']) echo "done.\n"; patch-services_dnsmasq_edit.php Description: application/php
Re: [pfSense-discussion] Allowing multiple IPs for the same hostname in the WebGUI
On 4/4/07, Fabian Steiner <[EMAIL PROTECTED]> wrote: Hello! On Wednesday 04 April 2007 16:53:25 Bill Marquette wrote: > On 4/4/07, Fabian Steiner <[EMAIL PROTECTED]> wrote: > > Therefore I would really be looking forward to adding this parameter to > > the existing options that are passed to the dnsmasq binary. If any > > patches are welcome, please let me know. > > Patches are almost always welcome. I'd suggest in this case that you > still allow for the checking of duplicate host names and and just > extend the edit screen to allow multiple hostnames in the way you > want. Then check for it in the backend and launch dnsmasq in the > appropriate way. Ok, I will see what I can do. However, I would need a CVS working copy then. What would be the exact command? I am not that familiar with CVS, you know. http://wiki.pfsense.com/wikka.php?wakka=pfSenseHome has developer info. --Bill
[pfSense-discussion] diurnal cycles in the background
I've noticed there's a very nice (~sinusoidal) correlation in background activity on one of my (idling) pfSense firewalls in the rrd graph. I interpret it that most of the malware scans are local, it must clearly be infected user machines which are switched off for the night. -- Eugen* Leitl http://leitl.org";>leitl http://leitl.org __ ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE
Re: [pfSense-discussion] Allowing multiple IPs for the same hostname in the WebGUI
Hello! On Wednesday 04 April 2007 16:53:25 Bill Marquette wrote: > On 4/4/07, Fabian Steiner <[EMAIL PROTECTED]> wrote: > > Therefore I would really be looking forward to adding this parameter to > > the existing options that are passed to the dnsmasq binary. If any > > patches are welcome, please let me know. > > Patches are almost always welcome. I'd suggest in this case that you > still allow for the checking of duplicate host names and and just > extend the edit screen to allow multiple hostnames in the way you > want. Then check for it in the backend and launch dnsmasq in the > appropriate way. Ok, I will see what I can do. However, I would need a CVS working copy then. What would be the exact command? I am not that familiar with CVS, you know. Cheers, Fabian
Re: [pfSense-discussion] Allowing multiple IPs for the same hostname in the WebGUI
On 4/4/07, Fabian Steiner <[EMAIL PROTECTED]> wrote: Therefore I would really be looking forward to adding this parameter to the existing options that are passed to the dnsmasq binary. If any patches are welcome, please let me know. Patches are almost always welcome. I'd suggest in this case that you still allow for the checking of duplicate host names and and just extend the edit screen to allow multiple hostnames in the way you want. Then check for it in the backend and launch dnsmasq in the appropriate way. --Bill
[pfSense-discussion] Allowing multiple IPs for the same hostname in the WebGUI
Hello! We are running pfSense on an IBM box which has got four NICs (WAN, DMZ and two other subnets). The configuration looks like that: +--++ | WAN | IP assigned by ISP | | DMZ | IP: 192.168.0.1 Netmask: 255.255.255.0 | | OPT1 | IP: 192.168.1.1 Netmask: 255.255.255.0 | | OPT2 | IP: 192.168.2.1 Netmask: 255.255.255.0 | +--++ Now we want to assign the hostname of the machine to all the three interfaces on the DNS Forwarder page of the WebGUI, however we always receive the message that such any entry already exists. From my point of view this is not very sophisticated as it prevents us from using the '-y' option of dnsmasq: - -y, --localise-queries Return answers to DNS queries from /etc/hosts which depend on the interface over which the query was received. If a name in /etc/hosts has more than one address associated with it, and at least one of those addresses is on the same subnet as the interface to which the query was sent, then return only the address(es) on that subnet. This allows for a server to have multiple addresses in /etc/hosts corresponding to each of its interfaces, and hosts will get the correct address based on which network they are attached to. Currently this facility is limited to IPv4. - Therefore I would really be looking forward to adding this parameter to the existing options that are passed to the dnsmasq binary. If any patches are welcome, please let me know. Cheers, Fabian