[Dnsmasq-discuss] server forwarding all traffic to parents after a successful PTR query of itself

2010-02-17 Thread Alberto Cuesta-Canada
Hi guys, I saw a weird scenario in one of our dnsmasq servers yesterday. As the logs below show, the server was all happy doing its thing, until a set of PTR queries came from normal servers in our network. The last of it would ask for the hostname of the dns server giving the IP, and from

Re: [Dnsmasq-discuss] server forwarding all traffic to parents after a successful PTR query of itself

2010-02-17 Thread Simon Kelley
Alberto Cuesta-Canada wrote: Hi guys, I saw a weird scenario in one of our dnsmasq servers yesterday. As the logs below show, the server was all happy doing its thing, until a set of PTR queries came from normal servers in our network. The last of it would ask for the hostname of the dns

Re: [Dnsmasq-discuss] server forwarding all traffic to parents after a successful PTR query of itself

2010-02-17 Thread Alberto Cuesta-Canada
Hi Simon, 2.47 Cheers, Alberto Cuesta-Canada GaaS Team Lead Excelian Ltd. +44 (0) 7942633361 From: Simon Kelley [mailto:si...@thekelleys.org.uk] Sent: Wed 17/02/2010 09:46 To: Alberto Cuesta-Canada Cc: dnsmasq-discuss@lists.thekelleys.org.uk; Grid Support

Re: [Dnsmasq-discuss] server forwarding all traffic to parents after a successful PTR query of itself

2010-02-17 Thread Simon Kelley
Alberto Cuesta-Canada wrote: Hi guys, I saw a weird scenario in one of our dnsmasq servers yesterday. As the logs below show, the server was all happy doing its thing, until a set of PTR queries came from normal servers in our network. The last of it would ask for the hostname of the dns

Re: [Dnsmasq-discuss] server forwarding all traffic to parents after a successful PTR query of itself

2010-02-17 Thread Alberto Cuesta-Canada
Hi Simon, the parents of 250 (my dnsmasq server) have forwarding rules for the dselgrid.local domain, that I run. So I assumed that the queries pushed upstream would be routed down again, and timeout in a loop. That said, in the logs I could still see successful PTR and A queries,

Re: [Dnsmasq-discuss] server forwarding all traffic to parents after a successful PTR query of itself

2010-02-17 Thread Simon Kelley
Alberto Cuesta-Canada wrote: Hi Simon, the parents of 250 (my dnsmasq server) have forwarding rules for the dselgrid.local domain, that I run. So I assumed that the queries pushed upstream would be routed down again, and timeout in a loop. Ahh, that could easily be the problem. If you

Re: [Dnsmasq-discuss] server forwarding all traffic to parents after a successful PTR query of itself

2010-02-17 Thread Alberto Cuesta-Canada
Cool, that makes a lot of sense. I'm actually reengineering the DNS infrastructure here, so it will be easy to account for and trace that at this stage. I'll let you know when I find the rogue queries, many thanks, Alberto Cuesta-Canada GaaS Team Lead Excelian Ltd. +44 (0) 7942633361

[Dnsmasq-discuss] forwarding-loop mitigation.

2010-02-17 Thread Simon Kelley
Alberto's query got me thinking: If dnsmasq were to read the value of the IP hop-count on incoming queries, and decrement it when forwarding, loops would be squashed in the same way as IP layer-three forwarding. Can anyone see a problem with this? Simon.

Re: [Dnsmasq-discuss] IP address based on switch port number (option 82)

2010-02-17 Thread Simon Kelley
ignacio.br...@belden.com wrote: Simon Kelley si...@thekelleys.org.uk wrote on 16/02/2010 14:27:36: fakeroot debian/rules binary I found a problem when fakerooting (sorry for my ignorance) Do I need to install additional tools containing this lib?: Package libidn was not found in the

Re: [Dnsmasq-discuss] forwarding-loop mitigation.

2010-02-17 Thread Jan 'RedBully' Seiffert
Simon Kelley schrieb: Alberto's query got me thinking: If dnsmasq were to read the value of the IP hop-count on incoming queries, and decrement it when forwarding, loops would be squashed in the same way as IP layer-three forwarding. Can anyone see a problem with this? If i'm not

Re: [Dnsmasq-discuss] IP address based on switch port number (option 82)

2010-02-17 Thread richardvo...@gmail.com
On Wed, Feb 17, 2010 at 5:03 AM, Simon Kelley si...@thekelleys.org.uk wrote: ignacio.br...@belden.com wrote: Simon Kelley si...@thekelleys.org.uk wrote on 16/02/2010 14:27:36: fakeroot debian/rules binary I found a problem when fakerooting (sorry for my ignorance) Do I need to install

Re: [Dnsmasq-discuss] Two questions about the cache and how dnsmasq forwards queries

2010-02-17 Thread /dev/rob0
On Tue, Feb 16, 2010 at 09:42:33AM +0100, SamLT wrote: Simon: Maybe your ISPs DNS server is playing games? I think my ISP also REDIRECTs DNS traffic to their nameservers, since, I get the same result using google public dns service. (and this doesn't happen @home with an other ISP).

Re: [Dnsmasq-discuss] IP address based on switch port number (option 82)

2010-02-17 Thread Simon Kelley
richardvo...@gmail.com wrote: Actually, I think you can avoid that without loss of generality. By DeMorgan's theorem, the AND and NOT operations currently available are sufficient to define any expression. You just need a way to do grouping, which a syntax for setting one tag conditionally

Re: [Dnsmasq-discuss] forwarding-loop mitigation.

2010-02-17 Thread Simon Kelley
Jan 'RedBully' Seiffert wrote: Simon Kelley schrieb: Alberto's query got me thinking: If dnsmasq were to read the value of the IP hop-count on incoming queries, and decrement it when forwarding, loops would be squashed in the same way as IP layer-three forwarding. Can anyone see a problem