[Zebedee-talk] RE: Zebedee for UltraVNC pass-thru -- address resolution problem
Brought to you by:
ndwinton
Menu
▾
▴
[Zebedee-talk] RE: Zebedee for UltraVNC pass-thru -- address resolution problem
|
From: Hazelrig, W. <Wil...@BH...> - 2004-01-07 19:09:33
|
You're analysis is spot-on, and the "via" PC log won't be needed. Zebedee is indeed trying to perform DNS resolution on the target host's name at the client, instead of leaving that detail for the server to attend to. I've successfully gotten it working through 2 different tactics, now: Tactic 1: replace PC_3 with the IP address of PC_3 on PC_2's network; alternately, add an LMHOSTS entry for PC_3's IP address to PC_1's LMHOSTS. This works if PC_3 has a fixed IP address which is either statically configured, or reserved for it by DHCP or BOOTP. Tactic 2: install the Posadis DNS server on PC_2, and add PC_2's IP address to PC_3's DNS servers list. Posadis is available via http://www.posadis.org/ -- the configuration needed is to have it refer to the DNS servers on the LAN containing PC_3 for its information, and to respond to DNS queries either specifically from PC_1, or from the address block containing PC_1 if PC_1 is receiving a dynamically-assigned IP address. This works even if PC_3 has a non-static IP address, but it's a lot more work. I believe it may be possible to improve on Tactic 2 by also tunnelling UDP port 53 via Zebedee, specifying the IP address of PC_2's LAN DNS server as the destination of the tunnel. The tunnel spec for that if the LAN DNS server had IP address w.x.y.z would be "53:w.x.y.z:53". You would then add 127.0.0.1 to the DNS servers list on PC_1, and open a ZBD tunnel to PC_2 for UDP port 53 to forward to PC_2's DNS server. Since Nat firewall will be involved in a project I'm working which makes heavy use of Zebedee, I may go so far as to poke around in the source code and see if Zebedee can be made to pass the tunnel spec from client to server without trying to resolve the address of the target using the client's DNS resources. If I get to that, though, it will be a month or so down the road. - w.h.=20 -----Original Message----- From: Sourcecode [mailto:to...@so...]=20 Sent: Wednesday, January 07, 2004 7:24 AM To: ult...@li... Subject: RE: [Ultravnc-list] Ultra Pass-thru I did as asked and the errorLog looks normal right up until the error at the bottom which says that it can't resolve the "host or address 'PC_3' " This is from the CLIENT (the initiator; PC_1) side zbd log. I'm wondering....if the SOURCE/CLIENT PC is in charge of 'resolving' the final target's hostname; then this mechanism is not terribly useful for trying to connect to PCs behind routers/firewalls, etc. The LAN behind the router is a 192.168.x.x ; and if I VNC to the "via"; I can "ping PC_3" without a problem. (Which if course is interesting since I'm VNCd thru the first (public) NIC but the ping seems to go out the other (private) NIC just fine.) It takes a bit more work to get a logfile from the "via" PC since I have to VNC to it; change the zbd file, and restart the box (and since its a webserver for an internet sales site...its *ALWAYS* being used :(0 But if you think that would be useful I will take the "administrative" leap and schedule a restart. regards, tob Tony O'Brien www.sourcecode-inc.com -----Original Message----- From: Hazelrig, William [mailto:Wil...@BH...] Sent: Wednesday, January 07, 2004 2:40 AM To: ult...@li... Subject: RE: [Ultravnc-list] Ultra Pass-thru I am still trying to identify the cause of the problem and get Zebedee to redirect successfully via a different NIC than the one the incoming tunnel is on. tob, would you change your verbosity setting in Zebedee to 10 or above, and specify a logfile (e.g. "logfile zbdfail.txt" in the config file)? Near the end of the logfile on the client side should be the error which causes the connection to fail. A similar logfile from the server could also be revealing, particularly if it either does contain an error, or does not contain any indication of a client connection attempt. - w.h. -----Original Message----- From: Hazelrig, William Sent: Tuesday, January 06, 2004 9:11 AM To: ult...@li... Subject: RE: [Ultravnc-list] Ultra Pass-thru I had not had occasion to try to get Zebedee to redirect via a different NIC than the one the incoming tunnel is on. I'll experiment with it this evening and let you know what I find. -----Original Message----- From: Sourcecode [mailto:to...@so...] Sent: Tuesday, January 06, 2004 8:58 AM To: ult...@li... Subject: RE: [Ultravnc-list] Ultra Pass-thru >Its pretty much the way W.H. had suggested all along (and I'm still trying >to figger' out what the hek is going astray on the "real" PCs I need to do >this with... because I am getting expected operations on another set of 3 >PCs here in my lab) Still no joy in the real world... So far the only difference seems to be that in the "real" setup I am arriving onto the "via" PC on one NIC (the one the world sees) and trying to connect to a "further-on" PC out another NIC (the local 192.16.8.1.x net).. I don't suppose that somehow windows helps ZBD get confused and doesn't search out the LocalNIC trying to resolve the "PC_3" name which exists there? regards, tob ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=3D1278&alloc_id=3D3371&op=3Dclick Confidentiality Notice: The information contained in this email message is privileged and confidential information and intended only for the use of the individual or entity named in the address. If you are not the intended recipient, you are hereby notified that any dissemination, distribution, or copying of this information is strictly prohibited. If you received this information in error, please notify the sender and delete this information from your computer and retain no copies of any of this information. ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id371&op=3Dick Confidentiality Notice: The information contained in this email message is privileged and confidential information and intended only for the use of the individual or entity named in the address. If you are not the intended recipient, you are hereby notified that any dissemination, distribution, or copying of this information is strictly prohibited. If you received this information in error, please notify the sender and delete this information from your computer and retain no copies of any of this information. ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id371&op=3Dick ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=3D1278&alloc_id=3D3371&op=3Dclick Confidentiality Notice: The information contained in this email message is privileged and = confidential information and intended only for the use of the individual = or entity named in the address. If you are not the intended recipient, = you are hereby notified that any dissemination, distribution, or copying = of this information is strictly prohibited. If you received this = information in error, please notify the sender and delete this = information from your computer and retain no copies of any of this = information. |
