Roger Blake wrote:
> I'm setting up diald 0.99.1 on a Linux-Mandrake 6.0 system to service
> an NT 4.0 based network of about 25 Wintel PCs.
> [...]
> The problem I'm having with diald is that it immediately starts
> dialing out as soon as it initializes.
> diald[1381]: Trigger: udp 172.16.0.201/1024 128.9.0.107/53
> This seems to be a very common problem, judging from the very large
> number of Usenet articles found on this topic via Deja News. I've
> tried just about every suggestion I've found so far to no avail.
This is DNS package (UDP 53). While named is starting, it send request
to root name servers to refresh its root hint file. (128.9.0.107 is
b.root-servers.net) IMO, It's useless effort. Root servers database
changed once in a blue moon. However, to stop this, just add this rule
to /usr/lib/diald/standard.filter:
ignore udp udp.dest=udp.domain,ip.tot_len=45
Be sure to put it before any of 'accept ... udp.domain ...' rules.
Now, for any dumb DNS query generated from Microsoft Network, just
monitor what namd it query and put them in DNS so they will be found in
local DNS and don't trigger diald. To monitor all queries sent to DNS,
just add this section to /etc/named.conf
logging {
category queries { default_syslog; };
};
Or just modify the logging section if it's already existed. Don't forget
to 'ndc restart' to restart named. Then look (at default syslog,
/var/log/message for my Slackware 3.6) for the query that make named to
contact to root DNS and hence trig diald. Just add them to local DNS so
they can be solved locally.
I use Slackware 3.6, Kernel 2.0.37, Diald 0.99 and Squid 2.2STABLE3. I
also set up local DNS which will serve local faked domain (ie.
joke.co.th) and private IP address (ie. 10.x.x.x) Clients are WFW311,
Win95 and Win98.
I also wrote little CGI (perl) to handle (some) diald configuration and
controling via web interface. I'll release it once it worth enough.
Bye,
Joke.
--
* Atsawin Chowanakritsanakul
* Thasala Suzuki Co., Ltd. Nakhon Si Thammarat, Thailand
* Work: +66 75 521123, Home: +66 75 330124
* [EMAIL PROTECTED]
* http://i.am/jmeam/ http://www.nakhon.net/
PS. Do not believe below instruction how to unsubscribe. Once, you
joined this list, you can never leave. :-)
-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]
