ppp -nat broken [solved]
Peter Ulrich Kruppa
root at pukruppa.de
Fri Oct 29 10:48:01 PDT 2004
On Fri, 29 Oct 2004 cpghost at cordula.ws wrote:
> On Fri, Oct 29, 2004 at 09:52:51AM +0200, Peter Ulrich Kruppa wrote:
>> On Tue, 26 Oct 2004, Peter Ulrich Kruppa wrote:
>> learn that named and BIND have changed. I did the respective
>> changes and edited two entries in /var/named/etc/named/named.conf
>> 1) I commented
>> listen-on {127.0.0.1;};
>
> Instead of opening a 53/tcp, 53/udp port to the world (ANYADDR),
> you may prefer to restrict the address range to your internal LAN only,
> with something like (replace 192.168.10.0/24 accordingly):
>
> listen-on { 127.0.0.1; 192.168.10.0/24; };
>
> Check with 'sockstat -46' to be sure.
>
>> 2) I put my two nameserver IPs (from /etc/resolv.conf) into
>> forwarders {
>> 195.62.99.42;
>> 195.62.97.177;
>> };
>
> They are not absolutely necessary: named is perfectly able to
> query root and other servers itself. You could experiment with
> or without forwarders, and pick the configuration that is faster
> for you. As a general rule of thumb: Forwarders are good for
> recursive queries, because only one query will travel through
> your ADSL link, other queries being done by your ISPs nameservers.
> They are also good, because you can profit from your ISPs nameservers'
> cache. But they can hinder performance, should one or both of those
> nameservers be down for whatever reason.
Both works perfectly well,
another thanks!
Uli.
>
> Cheers,
> cpghost.
>
> --
> Cordula's Web. http://www.cordula.ws/
> _______________________________________________
> freebsd-stable at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-stable
> To unsubscribe, send any mail to "freebsd-stable-unsubscribe at freebsd.org"
>
+---------------------------+
| Peter Ulrich Kruppa |
| Wuppertal |
| Germany |
+---------------------------+
More information about the freebsd-stable
mailing list