On Fri, 26 Oct 2001 at 10:09, likot wrote: > > which svscan loads up within 5 minutes. > 5 seconds :)
Oops. Yes. 5 seconds or LESS. :) > okay i think you made things alot harder than it should be ( if i > understand you correctly) andy yes tinydns and dnscache will not > listen on the same interface I _am_ a newbie as far as djb is concerned (save for my use of qmail, but that was quite awhile back). Still, I wouldn't say it was too hard. I had negligible downtime. ;> > tinydns should be configured to listen on a public/live or reachable > ip address (if you are using a public content dns server) That's indeed how it's configured. As a matter of fact, tinydns listens to all interfaces (0.0.0.0). > i think this could be handled by one dnscachex or an external dnscache Oh? 1. If I make dnscache listen to 192.168.0.1, connections to 127.0.0.1 won't work. 2. If I make dnscache listen to 127.0.0.1, connections from the LAN won't work. 3. If I make dnscache listen to 0.0.0.0 and restricting allowed connections via root/ip/*, external lookups to tinydns won't work because dnscache listens on both udp:53 and tcp:53. > touch ips in that directory to give access to your dnscache But the env/IP still dictates to which IP dnscache listens on. And if it listens on 192.168.0.1 I can't do lookups to localhost. Although I could simply fix my resolv.conf and find anything else that tries to do resolving by contacting 127.0.0.1 directly ... > this is the most secure way of doing things The way I configured dnscache limits it to lan and localhost use. And with BIND I put the same restriction. :) > my experience with axfr before ( teleglobe being the slave) is i need > to use a script called notify from http://tinydns.org It seems to work fine but I'll check this out. :) --> Jijo -- Federico Sevilla III :: [EMAIL PROTECTED] Network Administrator :: The Leather Collection, Inc. GnuPG Key: <http://jijo.leathercollection.ph/jijo.gpg> _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
