Re: internal network problem

[ha shao <hashao@hashao.hypermart.net>]

On Fri, Jan 18, 2002 at 11:28:52AM +0800, Zou Min wrote:
> 
> Yes, you are right. Some applications use double reverse DNS lookup to 
> enforce security. Since our internal IP is fake, DNS lookup takes a long 
> time. So I add an entry in /etc/hosts, and let nameserver looks for that 
> file before querying DNS server. This solves most problem, e.g. ssh/telnet 
> connection setup is instant. However, ftp still waits for
> 10-20 sec. I thought maybe wu-ftpd still query the DNS server.

Since most Debian inet daemons use tcpwrapper ('man tcpd'), which will do
reverse dns lookup, you can disable your ftpd's own reverse dns lookup.

Or if you run your own DNS, add a zone for your local IP. That way,
ftpd can do reverse dns lookup with no problem.

... Oh, I don't know how to disable wu-ftpd. :)

-- 
hashao|     古之善用兵者，能使敌人前后不相及，众寡不相恃，贵贱不相救，上下
hashao|     不相收，卒离而不集，兵合而不齐。合于利而动，不合于利而止。敢问
hashao|     敌众而整将来，待之若何曰：先夺其所爱则听矣。兵之情主速，乘人之
hashao|     不及。由不虞之道，攻其所不戒也。