[ale] still trying to figure it out

Robert L. Harris Robert.L.Harris at rdlg.net
Thu Jul 31 20:35:11 EDT 2003 


Do you have a firewall up on the DMZ you can drop?  I'm guessing you're
machine behind the dmz which fails is NAT'd?

Thus spake Geoffrey (esoteric at 3times25.net):

> Robert L. Harris wrote:
> >
> >Ok, do you have the same dns config inside and out?
> 
> Yes, and the output for the sniffing was off of the ethernet connected 
> to my dsl.  So I see both dns requests go out, I see one come back okay, 
> the other comes back 'no name.'
> 
> >What do you get with dig outputs?
> 
> From inside the dmz:
> 
> dig mybenefits.csplans.com
> 
> ; <<>> DiG 9.2.2 <<>> mybenefits.csplans.com
> ;; global options:  printcmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19937
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
> 
> ;; QUESTION SECTION:
> ;mybenefits.csplans.com.                IN      A
> 
> ;; Query time: 115 msec
> ;; SERVER: 66.20.234.15#53(66.20.234.15)
> ;; WHEN: Thu Jul 31 20:11:19 2003
> ;; MSG SIZE  rcvd: 40
> 
> From the firewall on the other side of the dmz:
> 
> dig mybenefits.csplans.com
> 
> ; <<>> DiG 8.2 <<>> mybenefits.csplans.com
> ;; res options: init recurs defnam dnsrch
> ;; got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
> ;; QUERY SECTION:
> ;;      mybenefits.csplans.com, type = A, class = IN
> 
> ;; ANSWER SECTION:
> mybenefits.csplans.com.  0S IN A  65.83.73.47
> 
> ;; Total query time: 103 msec
> ;; FROM: denali.3times25.net to SERVER: default -- 66.20.234.14
> ;; WHEN: Wed Jul 30 20:03:24 2003
> ;; MSG SIZE  sent: 40  rcvd: 56
> 
> 
> Can you hit the server on 53 tcp and 53 udp?
> 
> Are you referring to the dns server?  Yes
> 
> -- 
> Until later: Geoffrey		esoteric at 3times25.net
> 
> The latest, most widespread virus?  Microsoft end user agreement.
> Think about it...
> 
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale

:wq!
---------------------------------------------------------------------------
Robert L. Harris                     | GPG Key ID: E344DA3B
                                         @ x-hkp://pgp.mit.edu 
DISCLAIMER:
      These are MY OPINIONS ALONE.  I speak for no-one else.

Diagnosis: witzelsucht  	

IPv6 = robert at ipv6.rdlg.net	http://ipv6.rdlg.net
IPv4 = robert at mail.rdlg.net	http://www.rdlg.net

 PGP signature

More information about the Ale mailing list