networking/dns all screwed up ?

I am running redhat 8.0, with a 2.4.20 kernel. I have apache running
and host several websites. I run a deny first policy iptables
firewall. I have two nics one goes to the world the other goes to a
masqueraded internal network. I am not running dns but it seems like
a dns problem. I am experiencing some wierd networking problems.
Lets say mydomain name is mydomain.com. If I go in my mozilla an go
to a domain name that doesn't exist like "www.znasdasd.com" instead of
taking me to the this domain name does not respond I get the homepage
of mydomain.com but it says "www.znasdasd.com/index.html" in the
location bar. At the same time if i ping "www.znasdasd.com" i get
this:
#ping www.znasdasd.com
PING www.znasdasd.com.mydomain.com (x.x.x.x) from x.x.x.x : 56(84)
bytes of data.
64 bytes from mydomain.com (x.x.x.x): icmp_seq=1 ttl=64 time=0.151 ms
64 bytes from mydomain.com (x.x.x.x): icmp_seq=2 ttl=64 time=0.118 ms

--- www.znasdasd.com.mydomain.com ping statistics ---
2 packets transmitted, 2 received, 0% loss, time 999ms
rtt min/avg/max/mdev = 0.118/0.134/0.151/0.020 ms

Same thing happens when i traceroute. Now if i shutdown apache and go
in the browser i get connection refused from host but i get the exact
same results as earlier with the ping. Also I get the same ping
experience from my internal net???


Thanks in advance

<weird networking probs>

in the past i had many situations, in wich weird networking problems
occured. they were always cured by simply installing a DNS.
since i have realized that, from then on the first thing i always install in
my networks is a DNS and DHCP server. i can only suggest, that you do the
same. your problem looks very DNS- related to me.

i suggest bind9. it is not very difficult to set up, if you look at the
howtows and use a sample-conf as a basis.

HTH,
tom.
____________________

http://tom.lautenbacher.biz
____________________

On 21 Dec 2003 00:47:17 -0800, wex <(E-Mail Removed)> wrote:
> I am running redhat 8.0, with a 2.4.20 kernel. I have apache running
> and host several websites. I run a deny first policy iptables
> firewall. I have two nics one goes to the world the other goes to a
> masqueraded internal network. I am not running dns but it seems like
> a dns problem. I am experiencing some wierd networking problems.
> Lets say mydomain name is mydomain.com. If I go in my mozilla an go
> to a domain name that doesn't exist like "www.znasdasd.com" instead of
> taking me to the this domain name does not respond I get the homepage
> of mydomain.com but it says "www.znasdasd.com/index.html" in the
> location bar. At the same time if i ping "www.znasdasd.com" i get
> this:
> #ping www.znasdasd.com
> PING www.znasdasd.com.mydomain.com (x.x.x.x) from x.x.x.x : 56(84)
> bytes of data.
> 64 bytes from mydomain.com (x.x.x.x): icmp_seq=1 ttl=64 time=0.151 ms
> 64 bytes from mydomain.com (x.x.x.x): icmp_seq=2 ttl=64 time=0.118 ms
>
> --- www.znasdasd.com.mydomain.com ping statistics ---
> 2 packets transmitted, 2 received, 0% loss, time 999ms
> rtt min/avg/max/mdev = 0.118/0.134/0.151/0.020 ms
>
> Same thing happens when i traceroute. Now if i shutdown apache and go
> in the browser i get connection refused from host but i get the exact
> same results as earlier with the ping. Also I get the same ping
> experience from my internal net???

Sounds like you have a wildcard *.mydomain.com for your domain and 'domain
mydomain.com' or 'search mydomain.com' in /etc/resolv.conf. Therefore,
anything.at.all will resolve to anything.at.all.mydomain.com (you).

I have dynamic DNS with a wildcard like that, but I do NOT list that name
in /etc/resolv.conf, and therefore, do not have that problem.

--
David Efflandt - All spam ignored http://www.de-srv.com/
http://www.autox.chicago.il.us/ http://www.berniesfloral.net/
http://cgi-help.virtualave.net/ http://hammer.prohosting.com/~cgi-wiz/

Well I do have both a *.mydomain.com and domain mydomain.com. In the
past I thought I had the same set up but maybe not. So could you
explain why this happens and more importantly the solution is to
remove one or the other? What are the advantages/disadvantages to the
removal options?
thanks

(E-Mail Removed) (David Efflandt) wrote in message news:<(E-Mail Removed)>...
> On 21 Dec 2003 00:47:17 -0800, wex <(E-Mail Removed)> wrote:
> > I am running redhat 8.0, with a 2.4.20 kernel. I have apache running
> > and host several websites. I run a deny first policy iptables
> > firewall. I have two nics one goes to the world the other goes to a
> > masqueraded internal network. I am not running dns but it seems like
> > a dns problem. I am experiencing some wierd networking problems.
> > Lets say mydomain name is mydomain.com. If I go in my mozilla an go
> > to a domain name that doesn't exist like "www.znasdasd.com" instead of
> > taking me to the this domain name does not respond I get the homepage
> > of mydomain.com but it says "www.znasdasd.com/index.html" in the
> > location bar. At the same time if i ping "www.znasdasd.com" i get
> > this:
> > #ping www.znasdasd.com
> > PING www.znasdasd.com.mydomain.com (x.x.x.x) from x.x.x.x : 56(84)
> > bytes of data.
> > 64 bytes from mydomain.com (x.x.x.x): icmp_seq=1 ttl=64 time=0.151 ms
> > 64 bytes from mydomain.com (x.x.x.x): icmp_seq=2 ttl=64 time=0.118 ms
> >
> > --- www.znasdasd.com.mydomain.com ping statistics ---
> > 2 packets transmitted, 2 received, 0% loss, time 999ms
> > rtt min/avg/max/mdev = 0.118/0.134/0.151/0.020 ms
> >
> > Same thing happens when i traceroute. Now if i shutdown apache and go
> > in the browser i get connection refused from host but i get the exact
> > same results as earlier with the ping. Also I get the same ping
> > experience from my internal net???
>
> Sounds like you have a wildcard *.mydomain.com for your domain and 'domain
> mydomain.com' or 'search mydomain.com' in /etc/resolv.conf. Therefore,
> anything.at.all will resolve to anything.at.all.mydomain.com (you).
>
> I have dynamic DNS with a wildcard like that, but I do NOT list that name
> in /etc/resolv.conf, and therefore, do not have that problem.