-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Brent Gardner wrote: > Richard Doyle wrote: >> Since nobody has answered this... >> >> On Sat, 2007-05-19 at 13:11 -0700, Brent Gardner wrote:
<snip> >>> I want to allow queries from any machine on any network. I have been >>> able to accomplish this by putting 256 lines in >>> /etc/dnscache/env/IPQUERY, each with its own value, values running from >>> 0 to 255. Is there a more elegant way to do this? Entries I have tried >>> that do not seem to work: <blank>, 0, 0.0.0.0, 255, 255.255.255.255, *, >>> *.*.*.*, @. >> This is normally set by creating files in /etc/dnscache/root/ip : >> touch /etc/dnscache/root/ip/AAA >> > /etc/init.d/dnscache does this touching for us, based on the contents of > the ipquery file. Thank you, J. Nilo! > >> Apologies if this is incorrect. Authoritative words come from >> http:/cr.yp.to >> > I guess my question essentially boiled down to, "Is there a more elegant > way to get dnscache to allow queries from any IP address than to have > 256 files named 0 to 255 in /etc/dnscache/root/ip?" The answer to this > is probably more appropriately sought in djb-land. My solution is > working as desired so I've moved on to other projects. If I every find > a better way I'll post back to the list. I don't use dnscache anymore, but IIRC the DJB tools generally like to use 'truncated' IP's instead of any sort of wildcard. So, for instance, try using: 1.2.3 ...or maybe (note the trailing dot): 1.2.3. ...instead of: 1.2.3.0 1.2.3.1 ... 1.2.3.254 1.2.3.255 NOTE: - From the cr.yp.to website (http://cr.yp.to/djbdns/dnscache.html): dnscache accepts a packet or connection from IP address 1.2.3.4 if it sees a file named ip/1.2.3.4 or ip/1.2.3 or ip/1.2 or ip/1. ...looks like you may only need the trailing dot if you're specifying an entire class C, although I suspect that's actually a period (ending the sentence) and not a dot (part of the IP address filename). - -- Charles Steinkuehler [EMAIL PROTECTED] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGXJzbLywbqEHdNFwRAojnAJ0TZ9+Isz9t9/bsCvDHAqs9UL3fFQCeP3zt jQK8TjOHK5f71Zx79gQt4LQ= =ZquD -----END PGP SIGNATURE----- ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
