DNS & network news

Monthly Archive: May 2016

/32 subnet mask entered is illegal bug

just was trying set up ipv4 routes on my router and one of the subnet masks I need to enter is (/32)255.255.255.255 but I get an error saying the subnet mask is illegal. Obviously a bug on the isp’s side but I doubt they’ll be helpful in fixing it as I rang them today and he told that the internet provider didn’t provide static dns server info so I just got it working myself but now I’m having this error ..anyways around it? Screw Netflix and its whole world bar America rasicm

submitted by /u/obey1knobi
[link] [comments]

Powered by WPeMatico

Webserver DNS problem

I have my own DNS and Webserver in my office. One of my clients who has the most known provider in the country (have at least 100 clients with the same ISP) can access websites hosted on my server but they load very very slowly. This in not the case when accessing the server by other locations or by accessing other websites in that location. When I ping the server from a PC in their location the ping is around 70m/s.

Steps that I have taken:

Remove any proxy settings on their router. Set their DNS to the google DNS 8.8.8.8 and 8.8.4.4

Nothing has resolved the problem.

submitted by /u/Calypso_85
[link] [comments]

Powered by WPeMatico

PowerDNS recursor and .onion hidden services.

Hello Reddit,

For the last 2 days I’ve been fiddling with the PowerDNS recursor and it is working really nice on a Debian 8 64 bit VPS.  

Here is the basic setup:  

  • a OpenVPN is running on the server and it works properly.
  • the recursor is running on the default port 53 and I am allowing DNS queries from all sources
  • tor service is running on the VPS and DNSPort is set on 127.0.0.1:5335

When I lookup any domain name using the tor DNS port, I get proper answers which leads me to think that it is working properly.

In the resolver.conf file of the recursor I have added: forward-zones=onion.=127.0.0.1:5335

In theory all of the incoming DNS requests for .onion domains should be passed to the Tor DNSPort 5335.

However, when I connect to the VPN, I am able to resolve any domain names except for .onion domains.

I have even listened for traffic on port 5335 with tcpdump but no queries are being made when I try to open a .onion domain.

My question to the DNS gurus is, has someone done what I explained above and is it even possible to be done?

Note: I have managed to resolve .onion domain names but all of the traffic was routed through Tor using iptables.

Would appreciate any feedback on the topic.

submitted by /u/rum_fiend
[link] [comments]

Powered by WPeMatico

Help me with a Bind issue?

Hi everyone,

I am trying to add a new zone to my DNS server (Debian 6 running Bind). But it’s just not working.   Basically in order for me to force safe search on my network I need to create a zone for www.google.com, then create a cname for www.google.com and point it to forcesafesearch.google.com. Simple enough, except it’s not working and I have no idea why.   Here are my config files:

 

named.conf:

 

include “/etc/bind/named.conf.options”;

include “/etc/bind/named.conf.local”;

include “/etc/bind/named.conf.default-zones”;

 

named.conf.local

 

zone “www.google.com” {

 type master; file "/etc/bind/www.google.com.hosts"; }; 

 

www.google.com.hosts

 

$ttl 12h

www.google.com. IN SOA ns.www.google.com. ns.www.google.com. (

 2016052601 1d 15m 2w 1h ) 

www.google.com. IN NS ns.www.google.com

ns.www.google.com. IN A 10.1.1.2

@ IN CNAME forcesafesearch.google.com.

 

Yet here are the results of an NSLookup

 

Picard:~ <user>$ nslookup www.google.com 10.1.1.2

Server: 10.1.1.2

Address: 10.1.1.2#53

** server can’t find www.google.com: NXDOMAIN

 

Tearing my hair out over this. So any help would be greatly appreciated.

submitted by /u/lutiana
[link] [comments]

Powered by WPeMatico

pbs and pbskids from Canada?

My daughter had been playing the games on pbskids.org without any issues but wanted to watch a couple of their videos, and to our dismay it wasn’t available.

I already run a dns resolver using pfsense and sniproxy on a US VPS, and things worked for netflix, etc. That hasn’t worked in a while, so I tried to get pbskids on the list and I get a “backend not available”.

A quick google search tells me that theplatform.com is listed as its backend but no matter what I try, I cannot get it to work.

Has anyone else succeeded with this? I gave up and cancelled my subscription to netflix after their whole “proxy/vpn” bs (almost 8 years of service, they gladly took my money, but I digress)

I’m content with finding her different content, but I decided I might try and ran into this roadblock.

Any insight?

Thanks!

submitted by /u/machstem
[link] [comments]

Powered by WPeMatico