| View previous topic :: View next topic |
| Author |
Message |
Tuppu
n00b
Joined: 16 Feb 2003
Posts: 56
Location: Vaasa, Finland
|
 Posted: Thu Oct 16, 2003 10:15 pm Post subject: Strange DNS problem ? |
 |
|
I have strange problem. On the client machine (does not matter if windows or linux client) as writing to browsers (nscape, konqueror) address field www.google.fi (or .com) after long wait time out occures and pop-up window comes up saying document contains no data.
Now if I ping in a dos or terminal window:
| Quote: | C:\WINNT\system32>ping www.google.fi
Pinging www.google.akadns.net [216.239.41.99] with 32 by
Reply from 216.239.41.99: bytes=32 time=140ms TTL=46
Reply from 216.239.41.99: bytes=32 time=131ms TTL=46
Reply from 216.239.41.99: bytes=32 time=130ms TTL=46
Reply from 216.239.41.99: bytes=32 time=131ms TTL=46
Ping statistics for 216.239.41.99:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 130ms, Maximum = 140ms, Average = 133ms |
So, the name www.google.fi gets connected to an ip address.
If I key into the browsers address field the ip address from dos or terminal window then the page loads (thought www.google.com not www.google.fi)
Also www.bbc.om fails to load. cnn.com loads except some pictures.....
I have installed on the gentoo gateway bind 9.2 as caching nameserver.
How should I start looking for the source for this problem ? |
|
| Back to top |
|
 |
Kirigoe
Tux's lil' helper
Joined: 10 Jan 2003
Posts: 147
Location: concrete hut, sweden
|
| Posted: Thu Oct 16, 2003 11:02 pm Post subject: |
|
|
dig is your friend. dig comes with BIND and is the ultimate dns troubleshooting tool. you'll get to see all the info returned by the dns and you can query for all kinds of dns records.
things that might be wrong is that:
a) your dns server doesnt allow forwarding queries or
b) you have the wrong (or none) rootservers set to forward to.
_________________
+ adopt an unanswered post today!
+ kimono network monitor
+ downshift.org |
|
| Back to top |
|
|
Tuppu
n00b
Joined: 16 Feb 2003
Posts: 56
Location: Vaasa, Finland
|
| Posted: Fri Oct 17, 2003 5:13 am Post subject: |
|
|
In the meanwhile I found this:
https://forums.gentoo.org/viewtopic.php?t=93381
At the moment it seems that after adding
| Quote: | | iptables -I FORWARD -p tcp --cp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu |
to rules everything works...... |
|
| Back to top |
|
|
Tuppu
n00b
Joined: 16 Feb 2003
Posts: 56
Location: Vaasa, Finland
|
| Posted: Fri Oct 17, 2003 7:39 am Post subject: |
|
|
Wrong, it is not working. (I had proxy set up in browser as writing this  )
Through squid everything works fine, but direct connection through the server sucks on some sites such as www.google.fi, www.bbc.com
OK, when I get back home I will take a look on dig ... |
|
| Back to top |
|
|
Tuppu
n00b
Joined: 16 Feb 2003
Posts: 56
Location: Vaasa, Finland
|
| Posted: Mon Oct 20, 2003 8:07 pm Post subject: |
|
|
As I was having problems understanding "dig" (eh, command and output) I decided to emerge dnsmasq.
The problems are still there, does not matter if I use bind or dnsmasq. If I use proxy (squid) everything seems to be working just fine !
So where does this lead me to ?
Problems with Iptables  Or kernel
Any comment & idea would be appreciared !!! |
|
| Back to top |
|
|
Tuppu
n00b
Joined: 16 Feb 2003
Posts: 56
Location: Vaasa, Finland
|
| Posted: Sun Oct 26, 2003 11:02 pm Post subject: |
|
|
It seems that updating to "linux-2.4.20-gentoo-r8" solved the problem (From linux-2.4.20-gentoo-r7). 
It was sort of amusing as one of the sites which I could not view was: www.microsoft.com
 |
|
| Back to top |
|
|
|
Networking & Security
