Michael D. Schleif wrote: > "Michael D. Schleif" wrote: > >>does anybody have a proxy-arp dmz and also running tinydns & dnscache? > > > Anybody have such setup that works? >
I have three nics in Bering rc3 ________ eth1 10.10.10.0/24 + tinydns private + dnscache public static eth0 | leaf | (Internet) |________| eth2 10.20.20.0/24 (dmz) and that works great with both subnets talking to dnscache, which only needed an extra line in /etc/dnscache/env/IPQUERY like this /etc/dnscache/env/IPQUERY ==================================== |10.10.10 |10.20.20 |127.0.0.1 | | | and the rule in /etc/shorewall/rules: ========================================== | | ACCEPT dmz fw tcp 53 | ACCEPT dmz fw udp 53 But what's not working, because I guess you tried this? Is it routing or dnscache or fw rules? Matt ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html