configuring dns with internet scenario

Protecting your Linux box

configuring dns with internet scenario

Postby pazha_malai » Sun Mar 09, 2008 7:56 pm

hi

in our organization i configure a squid as transparent proxy server...

http_port 192.168.0.1:3128 transparent

my iptables configurations is below

# Generated by iptables-save v1.3.8 on Sun Mar 9 18:45:34 2008
*mangle
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
# Completed on Sun Mar 9 18:45:34 2008
# Generated by iptables-save v1.3.8 on Sun Mar 9 18:45:34 2008
*nat
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A PREROUTING -p tcp -m tcp -i eth0 --dport 80 -j DNAT --to-destination 172.16.31.100:3128
-A PREROUTING -p tcp -m tcp -i eth1 --dport 80 -j REDIRECT --to-ports 3128
-A POSTROUTING -o eth1 -j MASQUERADE
COMMIT
# Completed on Sun Mar 9 18:45:34 2008
# Generated by iptables-save v1.3.8 on Sun Mar 9 18:45:34 2008
*filter
:INPUT DROP [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -i lo -j ACCEPT
-A INPUT -i eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i eth0 -j ACCEPT
-A INPUT -j LOG
-A INPUT -j DROP
-A FORWARD -i eth0 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -o eth0 -j ACCEPT
COMMIT
# Completed on Sun Mar 9 18:45:34 2008

wt is the problem is the client accessing through is isp dns server ip

i want to configure local dns server so that our client access through local dns

server ..

guide me
pazha_malai
Cadet
 
Posts: 7
Joined: Mon Feb 18, 2008 6:36 pm

Postby x2oxen » Sun Mar 09, 2008 9:41 pm

is bind installed on your server and are you sure named service is running??
Muhammad Usman
+92-321-6640501
Chemonics International
http://usmanpk.com
x2oxen
Major General
 
Posts: 1114
Joined: Wed Aug 22, 2007 3:17 pm
Website: http://usmanpk.com
WLM: x2oxen@hotmail.com
Yahoo Messenger: x2oxen
Location: Faisalabad

configure a dns in lan network with internet secenario

Postby pazha_malai » Mon Mar 10, 2008 7:51 am

s bind service...


how to configure a lan network users access internet via local dns server

plz guide me
pazha_malai
Cadet
 
Posts: 7
Joined: Mon Feb 18, 2008 6:36 pm

Postby x2oxen » Tue Mar 11, 2008 10:49 am

all dns server do is resolve domain name into ip address so does it matter if your user using your isp dns until unless you are not thinking to host your domain? and if you still want it just install bind package and start named service and you are done.

one thing more

-A PREROUTING -p tcp -m tcp -i eth1 --dport 80 -j REDIRECT --to-ports 3128
-A POSTROUTING -o eth1 -j MASQUERADE

why your input and output devices are same??
Muhammad Usman

+92-321-6640501

Chemonics International

http://usmanpk.com
x2oxen
Major General
 
Posts: 1114
Joined: Wed Aug 22, 2007 3:17 pm
Website: http://usmanpk.com
WLM: x2oxen@hotmail.com
Yahoo Messenger: x2oxen
Location: Faisalabad

Postby nasacis » Tue Aug 11, 2009 1:40 pm

configure forwarders in your local dns and give your local dns ip in your cient TCP/IP setting as prefered DNS

Regards
Nafees Ahmed
Cell: +92.300.8653568
UAN: 041-111432432
Nexlinx Faisalabad
www.nexlinx.net.pk
nafees29@gmail.com
nasacis
Battalion Havaldaar Major
 
Posts: 269
Joined: Sat Dec 13, 2003 3:58 pm
ICQ: 22342780
Website: http://www.homepages.com.pk/nafeesahmed
WLM: nafees21
Yahoo Messenger: n_ahmad.rm
Location: Faisalabad


Return to “%s” Security

Who is online

Users browsing this forum: No registered users and 3 guests

cron