[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Setting DNS Servers Manually?

To: Michael B Allen <miallen@ioplex.com>
Subject: Re: Setting DNS Servers Manually?
From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
Date: Thu, 18 Oct 2007 11:14:14 -0700
Cc: heimdal-discuss@sics.se
In-Reply-To: <20071018015700.565d9cfe.miallen@ioplex.com>
List-Archive: <http://list.sics.se/sympa/arc/heimdal-discuss>
List-Help: <mailto:sympa@sics.se?subject=help>
List-Id: <heimdal-discuss.sics.se>
List-Owner: <mailto:heimdal-discuss-request@sics.se>
List-Post: <mailto:heimdal-discuss@sics.se>
List-Subscribe: <mailto:sympa@sics.se?subject=subscribe%20heimdal-discuss>
List-Unsubscribe: <mailto:sympa@sics.se?subject=unsubscribe%20heimdal-discuss>
References: <20071017173851.c6c1fc0c.miallen@ioplex.com> <61562DC8-3EA4-46DE-8DE2-BD4C1649860D@jpl.nasa.gov> <20071018015700.565d9cfe.miallen@ioplex.com>
Reply-To: heimdal-discuss@sics.se, "Henry B. Hotz" <hotz@jpl.nasa.gov>


On Oct 17, 2007, at 10:57 PM, Michael B Allen wrote:

> On Wed, 17 Oct 2007 21:44:17 -0700
> "Henry B. Hotz" <hotz@jpl.nasa.gov> wrote:
>
>> I'm not sure I understand.
>>
>> If you put everything in the krb5.conf then it doesn't need to do SRV
>> record lookup.  You could setenv KRB5_CONFIG to an application-
>> specific config file.  Maybe you can even put the Krb servers in as
>> IP numbers instead of DNS names.  Was that the sort of thing you were
>> looking for?
>
> Hi Henry,
>
> Actually I already do that mostly. I bypass the SRV lookups by doing
> those myself. And I added a krb5_config_set function to set the kdc
> (and kpasswd_server for password setting). But still libkrb5 needs to
> do at least A record lookups and I wouldn't be surprised to find some
> logic that still provokes SRV lookups or need to do them for some  
> reason.
>
> Converting to IP before krb5_config_set-ing seems seems like it could
> lead to trouble since Kerberos needs FQDNs to pick out realms,  
> generate
> names, etc.
>
> Also, what I really want to do is channel all DNS queries through my
> DNS lib so I provide consistent DNS server fallback behavior, caching,
> server "stickiness", etc.
>
> But for now I would be happy if I could just overload  
> gethostbyname. So
> basically I want to create a 'libmyresolv' that has a my_gethostbyname
> function and then modify Heimdal to use it. Unfortunately the  
> libmyresolv
> would need to link with my libs that link with Heimdal which creates a
> nasty circular dependency. Still haven't wrapped my head around  
> that one.
>
> Mike

Stick all the hosts you care about in /etc/hosts, and configure  
nsswitch.conf for "files,dns"?

I still don't understand why you want to do this.  I can understand  
wanting to guarantee reliability for a specific application, and its  
knowledge of its peers.  I don't understand why you wouldn't want  
other applications on the same box to get the same thing though.

>> On Oct 17, 2007, at 2:38 PM, Michael B Allen wrote:
>>
>>> Hello,
>>>
>>> I want to my apps to be configureable independantly of host
>>> settings. Is
>>> there a way to tell Heidmal to use a specific set of DNS servers?
>>>
>>> I have my own DNS routines so one option is to create and link  
>>> with my
>>> own libresolv but I'm hoping there's an easier solution.
>>>
>>> Any ideas?
>>>
>>> Off to look at the code,
>>> Mike
------------------------------------------------------------------------
The opinions expressed in this message are mine,
not those of Caltech, JPL, NASA, or the US Government.
Henry.B.Hotz@jpl.nasa.gov, or hbhotz@oxy.edu

Follow-Ups:
- Re: Setting DNS Servers Manually?
  - From: Michael B Allen <miallen@ioplex.com>

References:
- Setting DNS Servers Manually?
  - From: Michael B Allen <miallen@ioplex.com>
- Re: Setting DNS Servers Manually?
  - From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
- Re: Setting DNS Servers Manually?
  - From: Michael B Allen <miallen@ioplex.com>

Prev by Date: Re: Setting DNS Servers Manually?
Next by Date: Re: heimdal 1.0.1 w2k interop
Prev by thread: Re: Setting DNS Servers Manually?
Next by thread: Re: Setting DNS Servers Manually?
Index(es):
- Date
- Thread