DNS (2 ISPs) resolution problem
Kevin Darcy
kcd at daimlerchrysler.com
Mon Oct 23 20:32:23 UTC 2000
Normally, DNS servers don't give out different answers based on the
address of the client (although sometimes they will *sort* the answers
differently, based on the address of the client). So you should find out
why you're getting "bad" addresses via your DSL connection. Are you
forwarding to your DSL provider's servers? I suspect that their idea of
"encouraging" you to use their web proxy is to fudge their DNS answers
to point to their proxy. Which is a really asinine way to do things. If
this is the case, you should make your displeasure known to them. Also,
to get around this "blockage", don't use their DNS servers. Instead, run
a caching server with an Internet root hints file. Then you'll always
get the "public" addresses for those sites. (Assuming, of course, that
they don't similarly block, filter or re-route port 53 to "encourage"
you to use their DNS servers. If this is the case, I'd seriously
consider getting another provider.)
- Kevin
Sinan Karasu wrote:
> I have both DSL and @home. Since I have full blown DSL with
> 5 static IPs and a domain name and the capability to run any
> server I want, I run a primary DNS on DSL. So now anytime
> I surf the web and get an address like us.a1.yimg.com
> or any akamaitech.net , my 63.x.x.x DNS server resolves
> it to 63.228.123.199, 63.228.123.200 addresses.
> However, since I am surfing on my @home account,
> 63.y.y.y servers refuse to serve the content,
> which results in the web-browser getting hung.
>
> @home DNS servers resolve us.a1.yimg.com
> to 64.232.198.158,64,232,198,169.
>
> To get around this , I have aliased those
> hosts to 127.0.0.1 on my machine.
>
> However, if you ask something like samspade.org
> you get 204.178.110.79,204.178.123.206
>
> Now my question is, how do I stop the address
> resolution to a specific net ( like 63. or 24. )
> in DNS lookups? So that, the address I get from my
> 63.x.x.x DNS server will be usable in 24.x.x.x
>
> One more bit of info. I actually do run a split-DNS. but
> the internal one uses the external one as a forwarder.
>
> Tell you the truth, it actually is almost a plus.
> My wife has been telling me to go ahead and blackhole those
> hosts in the house, but first I'll try to solve it correctly.
>
> Thanx
> Sinan
>
> PS: Doesn't it look like yimg.com (yahoo image), akamaitech.net
> shoooting themselves in the foot?
>
> Sent via Deja.com http://www.deja.com/
> Before you buy.
More information about the bind-users
mailing list