DNS / router problem

hi all,

As part of my continuing adventures with trying to get a linux box to
act as a router I have set up routing on a server and I am testing it
using a laptop. Looks like routing is ok but I’m not getting any web
access on the laptop.

What I have:

PC acting as server with 3 NICs
Etho –not used
Eth1 – connected to a modem and the the internet with IP num 192.168.0.2
Eth2 – connected to the laptop with IP number 192.168.1.1

The laptop gets its address via DHCP from the PS server. I set the DNS
server to 192.168.1.1 and the laptop sets this up as its primary DNS server.

I’m using fedora core 5 on the server.

I am using named on the server as a caching DNS server (I hope). It
appears to work (at least I do the tests it says to do in the HOW TO and
they work).

Any idea why the laptop has no web access?

Thanks for your time.

Below are my files:


Named.conf (basically as it came with fedora but I have added the
forwarder to match my ISP DNS servers)

//
// named.conf for Red Hat caching-nameserver
//

options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
query-source address * port 53;
forward first;
forwarders {
195.67.199.42;
195.67.199.43;
};
};

//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};

zone "." IN {
type hint;
file "named.ca";
};

zone "localdomain" IN {
type master;
file "localdomain.zone";
allow-update { none; };
};

zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};

zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};

zone
"0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 .0.0.0.0.0.0.ip6.arpa"
IN {
type master;
file "named.ip6.local";
allow-update { none; };
};

zone "255.in-addr.arpa" IN {
type master;
file "named.broadcast";
allow-update { none; };
};

zone "0.in-addr.arpa" IN {
type master;
file "named.zero";
allow-update { none; };
};

include "/etc/rndc.key";

out put of dig run on the server:


; <<>> DiG 9.3.2 <<>> pat.uio.no
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15895
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 1

;; QUESTION SECTION:
;pat.uio.no. IN A

;; ANSWER SECTION:
pat.uio.no. 22388 IN A 129.240.10.15

;; AUTHORITY SECTION:
uio.no. 40205 IN NS nn.uninett.no.
uio.no. 40205 IN NS ifi.uio.no.
uio.no. 40205 IN NS nissen.uio.no.
uio.no. 40205 IN NS dvergen.uio.no.

;; ADDITIONAL SECTION:
ifi.uio.no. 605 IN A 129.240.64.2

;; Query time: 54 msec
;; SERVER: 195.67.199.42#53(195.67.199.42)
;; WHEN: Sun Dec 10 11:47:32 2006
;; MSG SIZE rcvd: 146


Looks like named works ok on the server?

AAW wrote:
> hi all,
>
> As part of my continuing adventures with trying to get a linux box to
> act as a router I have set up routing on a server and I am testing it
> using a laptop. Looks like routing is ok but I’m not getting any web
> access on the laptop.
>
> What I have:
>
> PC acting as server with 3 NICs
> Etho –not used
> Eth1 – connected to a modem and the the internet with IP num 192.168.0.2
> Eth2 – connected to the laptop with IP number 192.168.1.1
>
> The laptop gets its address via DHCP from the PS server. I set the DNS
> server to 192.168.1.1 and the laptop sets this up as its primary DNS
> server.
>
> I’m using fedora core 5 on the server.
>
> I am using named on the server as a caching DNS server (I hope). It
> appears to work (at least I do the tests it says to do in the HOW TO and
> they work).
>
> Any idea why the laptop has no web access?

1. You know if named works if you can resolve hostnames from your
laptop. That is nothing to do with routing.

2. You know if your routing works if you can "ping" from your laptop to
somewhere beyond your server as an IP address, e.g. your ISP.

Let us know what works and what doesn't work.

Robert

On Mon, 11 Dec 2006, in the Usenet newsgroup comp.os.linux.networking, in
article <eljflk$lb7$(E-Mail Removed)>, AAW wrote:

>As part of my continuing adventures with trying to get a linux box to
>act as a router I have set up routing on a server and I am testing it
>using a laptop. Looks like routing is ok but I?m not getting any web
>access on the laptop.

In your post last week, you stated that you had change some DHCP options
are were able to ping both NICs of the router. Please show the routing
table on the laptop so that we know it's OK. Also, can you display the
routing table on the modem? What does it look like?

>What I have:

OK

>The laptop gets its address via DHCP from the PS server. I set the DNS
>server to 192.168.1.1 and the laptop sets this up as its primary DNS server.

Is the laptop able to resolve names?

>Any idea why the laptop has no web access?

The next tool you want to learn to use is a packet sniffer. FC5 came with
ethereal-0.10.14-3.2, ethereal-gnome-0.10.14-3.2, and tcpdump-3.9.4-2.2.
Please see that one of these is installed, and read the documentation.

Sniff all of the traffic on the eth2 side. Do you see the laptop make
a DNS query? Does it get a reply? Does the laptop make a connection
attempt to a remote host like www.uio.no? Does the remote host reply?

Then look again on the eth1 side. There may be a DNS query/response if
the caching nameserver doesn't have the answer. Then you should see the
connection attempt from the laptop to the remote. Do you see a reply?

You are using two RFC1918 network addresses (192.168.0.x and 192.168.1.x).
Does the modem connected to eth1 know of the existence of 192.168.1.x?
Does it know how to reach the laptop? (There has to be an entry in it's
routing table with your 'router' listed as the gateway to this network,
OR your router must be doing proxyarp).

Old guy

On Mon, 11 Dec 2006 12:33:03 +0100, AAW wrote:

> hi all,
>
> As part of my continuing adventures with trying to get a linux box to
> act as a router I have set up routing on a server and I am testing it
> using a laptop. Looks like routing is ok but I'm not getting any web
> access on the laptop.

Can you resolve and external hosts?

www.google.com?
www.yahoo.com?
www.redhat.com?

If you can resolve them then DNS is not the issue. Check your firewall


--

Regards
Robert

Smile... it increases your face value!


----== Posted via Newsfeeds.Com - Unlimited-Unrestricted-Secure Usenet News==----
http://www.newsfeeds.com The #1 Newsgroup Service in the World! 120,000+ Newsgroups
----= East and West-Coast Server Farms - Total Privacy via Encryption =----

On Sun, 17 Dec 2006 00:16:22 -0500, Robert wrote:

> Can you resolve and external hosts?

Oppss. should read Can you resolve any external hosts?

Need to stop talking to the wife and posting at the same time.


--

Regards
Robert

Smile... it increases your face value!


----== Posted via Newsfeeds.Com - Unlimited-Unrestricted-Secure Usenet News==----
http://www.newsfeeds.com The #1 Newsgroup Service in the World! 120,000+ Newsgroups
----= East and West-Coast Server Farms - Total Privacy via Encryption =----