PaulDotCom mailing list archives
delegating name servers in Bind9
From: nils at hemmann.de (Nils)
Date: Wed, 25 Mar 2009 14:18:22 +0100
Hey Robin, Sorry for my late reply. I've tested Iodine DNS Tunnel a while ago. Here are my settings. Names and IPs haven been altered. ____ The name server setting on the mytoplevel.domain controlling DNS is: tunnel.mytoplevel.domain NS tunnelendpoint.at.home. TTL is 600 The first one is the top level domain I control which points to the Dyndns name of my home server. ____ Iodine server start at tunnelendpoint.at.home : iodined -f -P secretpass -l 192.168.0.10 10.0.0.1/24 tunnel.mytoplevel.domain 192.168.0.10 is the local IP to listen on. This can be skipped. 10.0.0.1/24 is the tunnel network. The next client gets 10.0.0.2 and so on.... I added a portforwarding on UDP port 25 to 192.168.0.10:25 on my gateway (tunnelendpoint.at.home) On BT3 running Iodine server I needed the following, too: mkdir -p /dev/net mknod /dev/net/tun c 10 200 chown root:root /dev/net/tun chmod 600 /dev/net/tun ____ Iodine client start: iodine -f -P secretpass tunnel.mytoplevel.domain You should be able to ping 10.0.0.1 now Cheers, Nils -----Original Message----- From: pauldotcom-bounces at mail.pauldotcom.com [mailto:pauldotcom-bounces at mail.pauldotcom.com] On Behalf Of Robin Wood Sent: Thursday, March 19, 2009 1:12 PM To: PaulDotCom Mailing List Subject: [Pauldotcom] delegating name servers in Bind9 Hi I'm trying to play with DNS tunnelling and need to setup a name server for a subdomain on my network. I'm running Bind9 locally and from what I've read the setup should be simple but I can't get it to work. I've got these lines in my db.attack file: attack.int. IN NS digininja.org. tunnel.attack.int. IN NS desktop.attack.int. desktop IN A 192.168.0.4 which I think means that anything to attack.int is taken care of by the nameserver digininja.org but anything to the subdomain tunnel.attack.int should be passed to the nameserver running on desktop.attack.int. I can get an IP for desktop.attack.int but not for tunnel.attack.int or *.tunnel.attack.int . I've watched traffic and there are no requests coming into desktop so the delegation isn't working. Can anyone suggest what I'm doing wrong? Robin _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- delegating name servers in Bind9 Robin Wood (Mar 19)
- delegating name servers in Bind9 Nils (Mar 19)
- delegating name servers in Bind9 Robin Wood (Mar 19)
- delegating name servers in Bind9 byte.bucket at 4a44.com (Mar 19)
- delegating name servers in Bind9 Robin Wood (Mar 19)
- delegating name servers in Bind9 mike p (Mar 19)
- delegating name servers in Bind9 Nils (Mar 25)
- <Possible follow-ups>
- delegating name servers in Bind9 byte.bucket at 4a44.com (Mar 19)
- delegating name servers in Bind9 Robin Wood (Mar 19)
- delegating name servers in Bind9 Nils (Mar 19)