configuring dns with internet scenario

Protecting your Linux box
Post Reply
pazha_malai
Cadet
Posts: 7
Joined: Mon Feb 18, 2008 6:36 pm

configuring dns with internet scenario

Post by pazha_malai »

hi

in our organization i configure a squid as transparent proxy server...

http_port 192.168.0.1:3128 transparent

my iptables configurations is below

# Generated by iptables-save v1.3.8 on Sun Mar 9 18:45:34 2008
*mangle
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
# Completed on Sun Mar 9 18:45:34 2008
# Generated by iptables-save v1.3.8 on Sun Mar 9 18:45:34 2008
*nat
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A PREROUTING -p tcp -m tcp -i eth0 --dport 80 -j DNAT --to-destination 172.16.31.100:3128
-A PREROUTING -p tcp -m tcp -i eth1 --dport 80 -j REDIRECT --to-ports 3128
-A POSTROUTING -o eth1 -j MASQUERADE
COMMIT
# Completed on Sun Mar 9 18:45:34 2008
# Generated by iptables-save v1.3.8 on Sun Mar 9 18:45:34 2008
*filter
:INPUT DROP [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -i lo -j ACCEPT
-A INPUT -i eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i eth0 -j ACCEPT
-A INPUT -j LOG
-A INPUT -j DROP
-A FORWARD -i eth0 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -o eth0 -j ACCEPT
COMMIT
# Completed on Sun Mar 9 18:45:34 2008

wt is the problem is the client accessing through is isp dns server ip

i want to configure local dns server so that our client access through local dns

server ..

guide me
x2oxen
Major General
Posts: 1114
Joined: Wed Aug 22, 2007 3:17 pm
Location: Faisalabad
Contact:

Post by x2oxen »

is bind installed on your server and are you sure named service is running??
Muhammad Usman
+92-321-6640501
Chemonics International
http://usmanpk.com
pazha_malai
Cadet
Posts: 7
Joined: Mon Feb 18, 2008 6:36 pm

configure a dns in lan network with internet secenario

Post by pazha_malai »

s bind service...


how to configure a lan network users access internet via local dns server

plz guide me
x2oxen
Major General
Posts: 1114
Joined: Wed Aug 22, 2007 3:17 pm
Location: Faisalabad
Contact:

Post by x2oxen »

all dns server do is resolve domain name into ip address so does it matter if your user using your isp dns until unless you are not thinking to host your domain? and if you still want it just install bind package and start named service and you are done.

one thing more

-A PREROUTING -p tcp -m tcp -i eth1 --dport 80 -j REDIRECT --to-ports 3128
-A POSTROUTING -o eth1 -j MASQUERADE

why your input and output devices are same??
Muhammad Usman
+92-321-6640501
Chemonics International
http://usmanpk.com
nasacis
Battalion Havaldaar Major
Posts: 269
Joined: Sat Dec 13, 2003 3:58 pm
Location: Faisalabad
Contact:

Post by nasacis »

configure forwarders in your local dns and give your local dns ip in your cient TCP/IP setting as prefered DNS

Regards
Nafees Ahmed
Cell: +92.300.8653568
UAN: 041-111432432
Nexlinx Faisalabad
www.nexlinx.net.pk
nafees29@gmail.com
Post Reply