Mandrake, DNS &DHCP?

f_araujo
f_araujo used Ask the Experts™
on
Hello,

I am trying to setup my home lan enviornment...

The scenario is this:

server01: Mandrake 9.0 with 2 networks cards, the first one connected directly to a ADLS modem, the second one connected to the LAN hub.

jiaf: WinXP workstation connected to the HUB.
dev01: WinXP workstation connected to the HUB.

I am trying to use server01 as a NAT server (using masquereding) to connect to the internet.

I already set up the DHCP server, and it works fine... but the problem is that i am not able to ping from server01 to jiaf or dev01, using the hostname... i think that is because the DNS entries are not been updated by the DHCP...

Can somebody help me?

Thanks a lot,
Francisco Araujo

please reply to fjaf@hotmail.com (my regular email server is down right now)
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Top Expert 2005
Commented:
Do you have a DNS server set up for your private netowrk? And if so have you configured it and the DHCP server to do dynamic DNS updates?
Solution Architect
Commented:
do it simpler :)

give the workstations a fixed ip and add their name to the /etc/hosts file.

or, if you insist to use dhcp:
check your dhcp leasings file, and take note of the MAC addresses. then go to your dhcpd.conf file and make those MAC addresses to obtain a fixed ip (too much work for a simple lan)
then go to the /etc/hosts file and add their names pointing to the fixed ip.

the third option is to update the dns doing it dinamically. there are some lines you must add in your named.conf and share a key between the dhcpd.conf and the named.conf files, and it should work.

Author

Commented:
To jlevie... i'm trying to do that.

Redimido:

I would like to do the third option (in fact i already did the first one, and the second one is really simple), not because i need that in my home network, but because i would like to know the steps involved to do it later in a bigger enviornment.

Can you send me a simple example of the named.conf and dhcpd.conf files that would do the trick?

Thanks for you help,
Francisco Araujo
Become a Certified Penetration Testing Engineer

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

Top Expert 2005

Commented:
If you'll send me an email (jim@entrophy-free.net) I'll return a set of templat files that you can exit to suit local hostnames and IP's.
Gabriel OrozcoSolution Architect

Commented:
jlevie:
please share that knowlege here
Gabriel OrozcoSolution Architect

Commented:
what I have is this:

in /etc/dhcpd.conf you must add at the beginning:
ddns-update-style ad-hoc;
ddns-domainname "your.domain.com";
ddns-updates on;

#create your own secret with dnskeygen
key DHCP_UPDATER {
  algorithm HMAC-MD5.SIG-ALG.REG.INT;
  secret dn3PED5AffBgHz4ngIkplG==;
};

#here goes your internal dns ip
zone your.domain.com. {
  primary 192.168.0.1;
  key DHCP_UPDATER;
}

zone 0.168.192.in-addr.arpa. {
  primary 192.168.0.1;
  key DHCP_UPDATER;
}

#here goes your subnet:
subnet 192.168.0.0 netmask 255.255.255.0 {
   option routers 192.168.0.1;
   range 192.168.0.221 192.168.0.252;
}

----------------------------------
and in the named.conf you should add the same key with the same name and in the zone put an "allow update" like this:

key DHCP_UPDATER {
  algorithm HMAC-MD5.SIG-ALG.REG.INT;
  secret dn3PED5AffBgHz4ngIkplG==;
};
zone "0.168.192.in-addr.arpa" {
   type master;
   file "internal/192.168.0";
   allow-update { key DHCP_UPDATER; };
};
zone "your.domain.com" {
   type master;
   file "internal/your.domain.com";
   allow-update { key DHCP_UPDATER; };
};
----
of course, you must have a valid zone file, but you should have one valid zone by now.

hope this helps. it took me some days to figure out it.
Top Expert 2005

Commented:
It's a real mess trying to put all the files involved into a comment. And then there's the problem in trying to pick each  file out and save that to the correct file name and hoping that they don't use a windows box to do the saves and wind up with carriage returns in the data.

I'm quite happy to share the data with anyone that wants it, but I can do without the hassles involved in posting it to an EE comment (been there, done that, and have the Tee Shirt to prove it). So now I only distribute the data as a tar file via email.
Gabriel OrozcoSolution Architect

Commented:
would you mind to send me that e-mail to add it to a webserver and then post it back here?
f_araujo:
This old question needs to be finalized -- accept an answer, split points, or get a refund.  For information on your options, please click here-> http:/help/closing.jsp#1 
EXPERTS:
Post your closing recommendations!  No comment means you don't care.

Commented:
No comment has been added lately, so it's time to clean up this TA.
I will leave a recommendation in the Cleanup topic area that this question is:
Split between Redimido & jlevie.
Please leave any comments here within the next seven days.

PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!

troopern
EE Cleanup Volunteer

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial