Re: network isolation
Op 20100712 om 22:26 schreef Florian Lohoff:
> On Mon, Jul 12, 2010 at 10:06:17PM +0200, Geert Stappers wrote:
> > Hello,
> >
> > What I'm looking for, is a way to run two servers on a single physical
> > server. To be more precise, I'm in need for two name servers on the same
> > machine.
>
> Typically you do something like this by configuring multiple ip adresses (which
> is needed anyway for multiple servers on same port) and bind the servers
> to the individual ip adresses. Most daemons support ip adress specific binding.
My challenge is solved that way. There where two hurdles for me.
1: I did see in the fifth or sixth reading of the dnsmasq configuration
file this entry:
| # On systems which support it, dnsmasq binds the wildcard address,
| # even when it is listening on only some interfaces. It then discards
| # requests that it shouldn't reply to. This has the advantage of
| # working even when interfaces come and go and change address. If you
| # want dnsmasq to really bind only the interfaces it is listening on,
| # uncomment this option. About the only time you may need this is when
| # running another nameserver on the same machine.
| #bind-interfaces
2: An authoritative domain name server says 'ServFail' when it is asked
to do recursion.
Hurdle 1 was taken by enabling 'bind-interfaces'. Hurdle 2 by using
a DNS that does do recursion.
> But i fail to see the mips specific thing in here ...
Due telling my original challenge here, I got it solved.
If I had told here
>> on an i386 system is the output of `aptitude search openvz`
>> | p linux-headers-2.6-openvz-686 - Header files for Linux 2.6-openvz-686 (met
>> | p linux-headers-2.6.32-5-common-o - Common header files for Linux 2.6.32-5-ope
>> | p linux-headers-2.6.32-5-openvz-6 - Header files for Linux 2.6.32-5-openvz-686
>> | p linux-image-2.6-openvz-686 - Linux 2.6 for modern PCs (meta-package), O
>> | p linux-image-2.6.32-5-openvz-686 - Linux 2.6.32 for modern PCs, OpenVZ suppor
>> | p linux-image-2.6.32-5-openvz-686 - Debugging infos for Linux 2.6.32-5-openvz-
>> | p linux-image-openvz-686 - Linux for modern PCs (meta-package), OpenV
>> | v linux-latest-modules-2.6.32-5-o -
>> | v linux-modules-2.6.32-5-openvz-6 -
>> on mips is _no output_ on `aptitude search openvz`
>>
>> Doing `aptitude search vserver` on i386 gives
>> | p linux-headers-2.6-vserver-686 - Header files for Linux 2.6-vserver-686 (me
>> | p linux-headers-2.6-vserver-686-b - Header files for Linux 2.6-vserver-686-big
>> | p linux-headers-2.6.32-5-common-v - Common header files for Linux 2.6.32-5-vse
>> | p linux-headers-2.6.32-5-vserver- - Header files for Linux 2.6.32-5-vserver-68
>> | p linux-headers-2.6.32-5-vserver- - Header files for Linux 2.6.32-5-vserver-68
>> | p linux-image-2.6-vserver-686 - Linux 2.6 for modern PCs (meta-package), L
>> | p linux-image-2.6-vserver-686-big - Linux 2.6 for PCs with 4GB+ RAM (meta-pack
>> | p linux-image-2.6.32-5-vserver-68 - Linux 2.6.32 for modern PCs, Linux-VServer
>> | p linux-image-2.6.32-5-vserver-68 - Linux 2.6.32 for PCs with 4GB+ RAM, Linux-
>> | p linux-image-2.6.32-5-vserver-68 - Debugging infos for Linux 2.6.32-5-vserver
>> | p linux-image-vserver-686 - Linux for modern PCs (meta-package), Linux
>> | p linux-image-vserver-686-bigmem - Linux for PCs with 4GB+ RAM (meta-package)
>> | v linux-latest-modules-2.6.32-5-v -
>> | v linux-latest-modules-2.6.32-5-v -
>> | v linux-modules-2.6.32-5-vserver- -
>> | v linux-modules-2.6.32-5-vserver- -
>>
>> On MIPS gives `aptitude search vserver` only
>> | p util-vserver - user-space tools for Linux-VServer virtual
>> | p vserver-debiantools - Tools to manage debian virtual servers
then we would go further away from my original challenge.
Now I'm reporting that I have the two nameservers on my MIPS system. \o/
Cheers
Geert Stappers
Reply to: