identd on jail with multiple IPs
Redd Vinylene
reddvinylene at gmail.com
Wed Aug 6 21:01:21 UTC 2008
Could it be a DNS misconfiguration perhaps?
On Wed, Aug 6, 2008 at 10:58 PM, Redd Vinylene <reddvinylene at gmail.com> wrote:
> Good evening Bjoern,
>
> Exactly how do I do a packet trace? I could do a tcpdump -n -e -ttt -i
> rl0 but I don't know how to filter out all the noise.
>
> But actually, identd works just fine here with the jail's first IP,
> 66.252.2.4. The problem must be elsewhere.
>
> When I change the IP to 66.252.2.5, or any other IP besides the first,
> I get errors like:
>
> ERROR Closing Link: 0.0.0.0 (A-banned: [AKILL ID:1212791563K-a]
> [exp/idsh] Connections from this netrange are required to respond to
> identd requests in order to connect to DALnet. Visit
> http://kline.dal.net/exploits/ident.htm for more information. Contact
> your provider if identd is not working (2008/08/04 02.07))
>
> When connecting to irc.freenode.net though, it defaults back to
> 66.252.2.4 no matter what IP I use.
>
> Maybe I've just twisted some of the basics?
>
> -
>
> The host (mother)'s rc.conf http://pastie.org/248762 (you've probably
> seen that one before though)
>
> -
>
> 66.252.2.4# cat /etc/rc.conf
> sshd_enable="YES"
> inetd_enable="YES"
> linux_enable="YES"
> clear_tmp_enable="YES"
> update_motd="NO"
>
> -
>
> 66.252.2.4# cat /etc/resolv.conf
> # Same as the host. Perhaps it should only contain "nameserver 66.252.2.2"?
> nameserver 69.65.17.101
> nameserver 69.65.16.102
>
> -
>
> 66.252.2.4# cat /etc/hosts
> 127.0.0.1 localhost localhost.fox-host.net
> 66.252.2.2 mother.fox-host.net mother
> 66.252.2.3 camel.fox-host.net camel
> 66.252.2.4 box.fox-host.net box
>
> -
>
> 66.252.2.4# uname -a
> FreeBSD mother.fox-host.net 7.0-STABLE FreeBSD 7.0-STABLE #3: Sat Aug
> 2 18:55:18 CDT 2008
> kalle at mother.fox-host.net:/usr/obj/usr/src/sys/GENERIC i386
>
> -
>
> Maybe you'd be willing to log onto the box yourself and boss it around a little?
>
> Cheers,
> Redd
>
> On Wed, Aug 6, 2008 at 10:18 PM, Bjoern A. Zeeb
> <bzeeb-lists at lists.zabbadoz.net> wrote:
>> On Wed, 6 Aug 2008, Redd Vinylene wrote:
>>
>>> I cannot seem to make identd work on a jail with multiple IPs (Bjoern
>>> Zeeb's patch):
>>
>> So do you have any kind of error message? packet traces or anything to
>> further isolate the problem rather than "does not work"?
>>
>> --
>> Bjoern A. Zeeb Stop bit received. Insert coin for new game.
>>
>
>
>
> --
> http://www.home.no/reddvinylene
>
--
http://www.home.no/reddvinylene
More information about the freebsd-jail
mailing list