FirstDNS

Archive mensuelles: février 2015

Battling forever against DNS landing pages

I feel like everytime I think I have thwarted my ISP’s DNS landing pages, another one pops up. I am running my own caching lookup server and have my home router pointing at it. It seemed like I was getting proper NXDOMAIN for non-existent domains when I last left it. But then tonight, another landing page popped up.

The status of my D-Link router shows hard-coded DNS, while my clients were querying 192.168.1.1 (as per ipconfig/ifconfig). Once I turned off DNS Relay in the router, my local DHCP clients had my lookup servers still followed by the ISP’s DNS servers (in ipconfig/ifconfig).

Is there a way to get my router’s local DHCP server from tacking those extra DNS on?

I had read that DNSMASQ is the real thorough solution. While I have run DD-WRT in the past, my new router’s native firmware is pretty fully featured and I don’t want to lose some of the specialty features it offers. Could my D-Link router have the equivalent functionality of DNSMASQ under a different name?

It has a ‘Routing’ menu where I can re-route requests for an IP with netmask to a specific gateway. The gateway has to be in my local subnet, so obviously I can’t just re-route it to my external lookup server. But could I route requests for my ISP’s DNS’s IP’s to a dead IP on my local subnet and at least prevent any requests to those servers from successfully arriving?

tl;dr: Can I get my router’s DHCP server to stop tacking my ISP’s DNS after the ones I hard-coded into the router’s DNS settings? Do D-Link routers have any native equivalent to DNSMASQ? Can I use routing settings to redirect all traffic to my ISP’s DNS to a local (dead) gateway?

submitted by fongaboo
[link] [2 comments]

Powered by WPeMatico

PDNS Question, or really any other auth server…

Hi DNS friends.

I have a PDNS server with mysql back end. This works great.

I also have a custom built pipe back end which also works great.

I would like a query to be first attempted with the mysql backend and then fail to the pipeback end if the record is not found in the mysql table.

This seems like a simple scenario, but perhaps I’ve been spending too much time in the sun and I don’t see an easy way to do this.

I’d even entertain switching servers. If a server could check it’s local data and if it has no record, forward the query to another server before returning the nxdomain, that would also be acceptable.

I could write my own pipe back end to handle the entire process, but this seems like overkill on something that should be fairly simple.

Is there an easy way to do this and I’m missing something? Or should I create my own pipe backend to handle this?

EDIT:

Thought I should add a simple example.

I have 2 servers configured for foo.com….

Server A:

Server B:

  • mail.foo.com

  • wiki.foo.com

I would like a query to come in to server A, and rather than server A returning NXDOMAIN for wiki.foo.com, I would like it to query server B and return the result back to the original client. These don’t have to be physically separated servers, but I could do it either way.

I know I can add NS records and handle it through delegation, but in my particular scenario, this is not going to work efficiently as we’re talking about a fairly large number of records.

Edit 2: Seems pdns probably does what I want it to do out of the box. It queries back ends in order in the config file, and does not give up on the first if it doesn’t find an exact match. This behaviour allows me to do what I need to do I think. I will provide more details and likely the source code to the sub once I have it tweaked and working.

submitted by 4964d3aae7085d86607b
[link] [2 comments]

Powered by WPeMatico

Transferring DNS to NameCheap: Does this take my website down?

Sorry for the simple question—I can’t seem to find the answer.

I recently transferred my domain from my IXWebHosting to NameCheap. However, in order to have access to subdomains/email forwarders, NC customer support has told me I have to transfer my DNS to theirs.

I’m just concerned that by doing this my domain will not lead to the website, since the files are still hosted on IXWeb. I guess my confusion is wondering how my domain will reach my files, if they’re being linked to a different DNS.

Since this can take up to 72 hours to fix, I’m trying to make sure this is correct, as it’s the website for my portfolio/resume.

Thanks!

submitted by gizmoglitch
[link] [4 comments]

Powered by WPeMatico

Idea: Dynamically substitute local IP addresses, e.g. "192.168.1.136" becomes "lan136".

I use a lot of locally-hosted apps (e.g. Wiki2Touch, PHP chatroom for sharing photos). On my own device, I can use http://localhost, but I have to tell friends my whole IP address. That changes based on the network: 192.168.1.x, 192.168.30.x, etc. Android devices don’t resolve hostnames from the browser address bar. A device knows its own IP address. I propose adding the first 3 parts of the IP address, based on the current device’s own IP. For example, I have a web server running on my device, sharing a chatroom. My device has the IP address 192.168.30.1. My friend’s device has the IP address 192.168.30.4. Right now, I have to tell my friend to type « http://192.168.30.1 » into their browser. My proposal would allow my friend to type « http://lan1 » into their browser.

submitted by peterburk
[link] [8 comments]

Powered by WPeMatico

Is it more secure to have a random outbound port number or an assigned one?

I have been doing some research regarding DNS servers and had a question regarding port numbers. I noticed that when configuring a DNS server you can choose to have the outbound port number either be a random open port port or have it come out an assigned port. Which one would be a more secure route? I had heard that the more open ports are available the less secure a system can be.

submitted by CheshireCrab
[link] [comment]

Powered by WPeMatico