Re: [Server-devel] adding custom dns entries on XS
2009/3/17 Daniel Drake d...@laptop.org: But the iptables idea is a good one, thanks! ...but unfortunately the redirect is done by IP, which results in all services/sites that might be running on the same system as activation.laptop.org being unaccessible, and also breaks as soon as the upstream IP for activation.laptop.org changes :( Daniel ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
Re: [Server-devel] adding custom dns entries on XS
On Wed, Mar 18, 2009 at 4:21 AM, Daniel Drake d...@laptop.org wrote: The changes to .in will be overwritten when xs-configs gets updated. But the iptables idea is a good one, thanks! It's in my plans to have a means to do what you're doing. I was wondering about - a conf.d approach - a pre-processor for the .in files that handles ifdef-style blocks - whether dnsmasq or djbdns can help us here I sure hope BIND won't be with us for ever. (mutter, grumble grumble spit... network principles and the inelegance of breaking the internet) cheers, m -- martin.langh...@gmail.com mar...@laptop.org -- School Server Architect - ask interesting questions - don't get distracted with shiny stuff - working code first - http://wiki.laptop.org/go/User:Martinlanghoff ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
Re: [Server-devel] adding custom dns entries on XS
2009/3/17 Martin Langhoff martin.langh...@gmail.com: It's in my plans to have a means to do what you're doing. I was wondering about - a conf.d approach - a pre-processor for the .in files that handles ifdef-style blocks - whether dnsmasq or djbdns can help us here I sure hope BIND won't be with us for ever. dnsmasq can certainly help. With dnsmasq you just have to add an entry in /etc/hosts on the server, and then dnsmasq automatically picks it up. Michael says that djbdns also can do what we want, and pointed me to some documentation, but it looked a lot more complicated than dnsmasq. Daniel ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
Re: [Server-devel] adding custom dns entries on XS
On Tue, 2009-03-17 at 12:00 -0400, Daniel Drake wrote: 2009/3/17 Daniel Drake d...@laptop.org: But the iptables idea is a good one, thanks! ...but unfortunately the redirect is done by IP, which results in all services/sites that might be running on the same system as activation.laptop.org being unaccessible, and also breaks as soon as the upstream IP for activation.laptop.org changes :( The dns hijack would suffer from an ip change also, would it not? With iptables you would be redirecting just the destination ports for the activation service, not all the traffic bound for activation.laptop.org, as with the dns trick. What iptables command did you try? I was thinking of something like(untested): -A PREROUTING -i ! eth0 -p tcp --dport port -d 18.85.46.58 -j DNAT --to-destination ip of your box Jerry ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
Re: [Server-devel] adding custom dns entries on XS
On Tue, 2009-03-17 at 16:04 -0400, Daniel Drake wrote: 2009/3/17 Martin Langhoff martin.langh...@gmail.com: It's in my plans to have a means to do what you're doing. I was wondering about - a conf.d approach - a pre-processor for the .in files that handles ifdef-style blocks - whether dnsmasq or djbdns can help us here I sure hope BIND won't be with us for ever. dnsmasq can certainly help. With dnsmasq you just have to add an entry in /etc/hosts on the server, and then dnsmasq automatically picks it up. You beat me to that one. Jerry ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
Re: [Server-devel] adding custom dns entries on XS
2009/3/17 Jerry Vonau jvo...@shaw.ca: The dns hijack would suffer from an ip change also, would it not? No. If the real antitheft.laptop.org changes IP, our hijack still works. Daniel ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
