Re: How to set up Bind/SplitDNS on FC5?
Dan Williams <[EMAIL PROTECTED]> writes: >> Oh, it isn't? Hmm... Then what does that mean for a VPN situation? >> When I VPNC into my corporate net I need to use the corporate DNS servers. >> If I'm using named. How would this work right now? > > If you start a VPN, all DNS traffic is funneled to the corporate > nameservers that the VPN reports back to NM. If split DNS were running, > you'd only use the corporate nameservers for addresses ending in the > corporate domain name that the VPN provided, or ones you specified in > the VPN config, instead of everything. Think of it like the split > routing that we've already got. Fair enough. I guess I can wait until this gets integrated in. I thought it had already, but I guess not. Oh well. A local caching nameserver is "better", anyways. > Dan -derek -- Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory Member, MIT Student Information Processing Board (SIPB) URL: http://web.mit.edu/warlord/PP-ASEL-IA N1NWH [EMAIL PROTECTED]PGP key available ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: How to set up Bind/SplitDNS on FC5?
Dan Williams <[EMAIL PROTECTED]> writes: > I thought they did; make sure that bind is running with the "-D" option. > Just checked, and a basic install of FC6 (rawhide) doesn't turn this on > by default either. Which might explain some of the stupidity I've been > seeing WRT to networking changes recently on my laptop. FYI: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=196398 No clue if this will get changed, but it wont if it's not requested. -derek -- Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory Member, MIT Student Information Processing Board (SIPB) URL: http://web.mit.edu/warlord/PP-ASEL-IA N1NWH [EMAIL PROTECTED]PGP key available ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: How to set up Bind/SplitDNS on FC5?
On Thu, 2006-06-22 at 12:09 -0400, Derek Atkins wrote: > Quoting Dan Williams <[EMAIL PROTECTED]>: > > > I thought they did; make sure that bind is running with the "-D" option. > > Just checked, and a basic install of FC6 (rawhide) doesn't turn this on > > by default either. Which might explain some of the stupidity I've been > > seeing WRT to networking changes recently on my laptop. > > Okay. I hand-modified /etc/sysconfig/named and added OPTIONS=-D and > now named is reporting dbus service. Should I file a bug against named > for this? I have no idea if it should be running with the DBUS service > enabled by default. > > > Note that split DNS, while possible, isn't quite used yet. We've got > > all the bits in place, just need to hook it up for VPN. > > Oh, it isn't? Hmm... Then what does that mean for a VPN situation? > When I VPNC into my corporate net I need to use the corporate DNS servers. > If I'm using named. How would this work right now? If you start a VPN, all DNS traffic is funneled to the corporate nameservers that the VPN reports back to NM. If split DNS were running, you'd only use the corporate nameservers for addresses ending in the corporate domain name that the VPN provided, or ones you specified in the VPN config, instead of everything. Think of it like the split routing that we've already got. Dan > > Dan > > -derek > ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: How to set up Bind/SplitDNS on FC5?
Quoting Dan Williams <[EMAIL PROTECTED]>: > I thought they did; make sure that bind is running with the "-D" option. > Just checked, and a basic install of FC6 (rawhide) doesn't turn this on > by default either. Which might explain some of the stupidity I've been > seeing WRT to networking changes recently on my laptop. Okay. I hand-modified /etc/sysconfig/named and added OPTIONS=-D and now named is reporting dbus service. Should I file a bug against named for this? I have no idea if it should be running with the DBUS service enabled by default. > Note that split DNS, while possible, isn't quite used yet. We've got > all the bits in place, just need to hook it up for VPN. Oh, it isn't? Hmm... Then what does that mean for a VPN situation? When I VPNC into my corporate net I need to use the corporate DNS servers. If I'm using named. How would this work right now? > Dan -derek -- Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory Member, MIT Student Information Processing Board (SIPB) URL: http://web.mit.edu/warlord/PP-ASEL-IA N1NWH [EMAIL PROTECTED]PGP key available ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list
Re: How to set up Bind/SplitDNS on FC5?
On Wed, 2006-06-21 at 08:55 -0400, Derek Atkins wrote: > I'm running FC5 with the following packages: > > NetworkManager-0.6.3-1.fc5 > bind-9.3.2-20.FC5 > bind-config-9.3.2-20.FC5 > > I have named running, but /etc/resolv.conf still points to the > DNS server provided by DHCP and not the local caching resolver. > > Is there some manual configuration I need to do to get this working, > other than just setting up named to run at boot? I would've assumed > that the bind/bind-config packages would have set the appropriate > configurations for NM in FC5. I guess I've assumed wrong, but I can't > seem to find any instructions for what changes I might need to make to > get this feature working. I thought they did; make sure that bind is running with the "-D" option. Just checked, and a basic install of FC6 (rawhide) doesn't turn this on by default either. Which might explain some of the stupidity I've been seeing WRT to networking changes recently on my laptop. Note that split DNS, while possible, isn't quite used yet. We've got all the bits in place, just need to hook it up for VPN. Dan > Thanks, > > -derek > ___ NetworkManager-list mailing list NetworkManager-list@gnome.org http://mail.gnome.org/mailman/listinfo/networkmanager-list