[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Sheflug] Re-booting

To: "Sheflug" <sheflug [at] vuw.ac.nz>
Subject: [Sheflug] Re-booting
From: Barrie Bremner <nospam [at] barriebremner.com>
Date: Tue, 19 Jun 2001 19:23:37 +0100
List-help: <http://www.sheflug.co.uk>
List-owner: <mailto:sheflug-admins [at] vuw.ac.nz>
List-post: <mailto:sheflug [at] vuw.ac.nz>
List-subscribe: <mailto:sheflug-request [at] vuw.ac.nz?Subject=subscribe>
List-unsubscribe: <mailto:sheflug-request [at] vuw.ac.nz?Subject=unsubscribe>
Reply-to: "Sheflug" <sheflug [at] vuw.ac.nz>
Sender: sheflug-bounce [at] vuw.ac.nz

>>>>> "John" == John Southall <john [at] jrwsouthall.demon.co.uk> writes:

    John> Hi all, It works.  I got the proxy/firewall to work, but
    John> with a few problems.

    John> First - I did some of the configuration in yast1, some by
    John> directly editing /etc/rc.config and
    John> /etc/rc.config.d/firewall.rc.config and some by using
    John> ifconfig. With ifconfig the changes seem to take effect
    John> immediately, but with yast1 and direct editing I am having
    John> to reboot the system (shutdown -r now) for the changes to
    John> take effect. Is there a quicker way?

Definitely. You should only need to reboot to update the kernel or
mess with hardware :-)

Depending on what you're changing, you will have to go about putting
the changes in effect in different ways.

You could re-run scripts, change the runlevel (init [number]) or
restart a program (killall -HUP [program_name]).

If you are changing scripts that are normally run at boot, you could
just run the "new" programs manually, or if it's not going to mess
with a vital process, just re-run the script (treat like a command/program).

    John> Second - the server cannot use DNS, but the workstations
    John> can. This means I cannot point the server at the ISP web
    John> cache, it says "Hostname not resolved". I am working on this
    John> at the moment, I suspect it is a fault with an ipchains
    John> rule, will post details as soon as possible.

Check which DNS servers if any are listed in /etc/resolv.conf on the
server and modify to taste (changes take effect automatically).

Also, type:

ipchains -L -n

on the firewall/proxy/router and look for lines that block or redirect
requests to/from port 53/DNS or from your server's IP or the remote
DNS server.

If you are running a default DENY ruleset, make sure you're allowing
DNS in/out.

If you want, you can post the ruleset to the list, or I'm happy to
look at them offlist for you.

Cheers.

Baz.

-- 
Barrie J. Bremner		OpenPGP public key ID: 5164F553
baz [at] barriebremner.com	http://barriebremner.com/


---------------------------------------------------------------------
Sheffield Linux User's Group - http://www.sheflug.co.uk
To unsubscribe from this list send mail to
- <sheflug-request [at] vuw.ac.nz> - with the word 
 "unsubscribe" in the body of the message. 

  GNU the choice of a complete generation.

References:
- [Sheflug] Re-booting
  - From: John Southall <nospam [at] jrwsouthall.demon.co.uk>

Prev by Date: Re: [Sheflug] Re: BIG (server) case?
Next by Date: [Sheflug] Stupid cron question
Prev by thread: [Sheflug] Re-booting
Next by thread: [Sheflug] Stupid cron question
Index(es):
- Date
- Thread