AD DNS

Daniel J Walsh dwalsh at redhat.com
Wed Aug 27 15:57:29 UTC 2003 

Don't worry about the paronoia.  Lets just call the domain censored.com

Not sure how Microsoft works.  But your query was looking for
burner.censored.com
which does not exist.

Microsoft returned
burner.stores.censored.com

In order to have this happen on Unix.  You would need the search in 
resolv.conf to look like the following

search censored.com stores.censored.com

Dan


stephan schutter wrote:

> sorry for the paranoia... It would just be too easy for a social 
> engineer with the details and the company name... if it helps you to 
> know where I am... we can do this in private email...
>
> as you can see they have the same name servers and the subnet is the 
> same, and the search domain is the same... how can they get a diferent 
> answer from the name server?
>
> ______ RESOLVE.CONF _________________
>
> ; generated by /sbin/dhclient-script
> search hq.<censored>.com
> nameserver 10.104.241.115
> nameserver 10.114.215.20
>
> the hq* comes from DHCP...
>
> [root at thumper root]# ifconfig
> eth0      Link encap:Ethernet  HWaddr 00:06:5B:2C:A6:61          inet 
> addr:10.89.17.22  Bcast:10.89.17.255  Mask:255.255.255.0
>          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>          RX packets:342584 errors:0 dropped:0 overruns:1 frame:0
>          TX packets:127144 errors:0 dropped:0 overruns:0 carrier:0
>          collisions:0 txqueuelen:100
>          RX bytes:26721199 (25.4 Mb)  TX bytes:57670951 (54.9 Mb)
>          Interrupt:11 Base address:0xec80
>
>
>
> _______ WinXP config _________________
> C:\Documents and Settings\Administrator>ipconfig /all
>
> Windows IP Configuration
>
>        Host Name . . . . . . . . . . . . : clone-xor7cco2u
>        Primary Dns Suffix  . . . . . . . :
>        Node Type . . . . . . . . . . . . : Hybrid
>        IP Routing Enabled. . . . . . . . : No
>        WINS Proxy Enabled. . . . . . . . : No
>
> Ethernet adapter Local Area Connection 2:
>
>        Connection-specific DNS Suffix  . : hq.<censored>.com
>        Description . . . . . . . . . . . : 3Com 3C920 Integrated Fast 
> Ethernet Controller (3C905C-TX Compatible)
>        Physical Address. . . . . . . . . : 00-06-5B-E0-50-8C
>        Dhcp Enabled. . . . . . . . . . . : Yes
>        Autoconfiguration Enabled . . . . : Yes
>        IP Address. . . . . . . . . . . . : 10.89.17.91
>        Subnet Mask . . . . . . . . . . . : 255.255.255.0
>        Default Gateway . . . . . . . . . : 10.89.17.1
>                                            10.89.17.2
>        DHCP Server . . . . . . . . . . . : 10.114.83.24
>        DNS Servers . . . . . . . . . . . : 10.104.241.115
>                                            10.114.215.20
>        Primary WINS Server . . . . . . . : 10.104.240.251
>        Secondary WINS Server . . . . . . : 10.114.48.250
>        Lease Obtained. . . . . . . . . . : Wednesday, August 27, 2003 
> 9:04:44 AM
>        Lease Expires . . . . . . . . . . : Monday, September 01, 2003 
> 9:04:44 AM
>
>
> Daniel J Walsh wrote:
>
>> stephan schutter wrote:
>>
>>> Hi,
>>> I am in a large network that uses Active Directory DDNS and redhat 
>>> can simply not resolve any other computernames in the network... 
>>> well atleast thare is a large segment of them that can not be 
>>> resolved. no workstations for example.  I use the default setup and 
>>> allow DHCP to configure everything. In windows it works fine, but in 
>>> this version  (I do not know about earlier versions) it does not 
>>> work at all. I do nslookup to the same server using the same DNS 
>>> server and get diferent results. eg. the DNS server (windows 2000)  
>>> does not reply with the same anwer if you are redhat.
>>> WIN:
>>> Z:\tmp\scan>nslookup burner
>>> Server:  dhcnic02.<removed>.com
>>> Address:  10.104.241.115
>>>
>>> Name:    burner.stores.<removed>.com
>>> Address:  10.89.17.84
>>>
>>> REDHAT:
>>> Note:  nslookup is deprecated and may be removed from future releases.
>>> Consider using the `dig' or `host' programs instead.  Run nslookup with
>>> the `-sil[ent]' option to prevent this message from appearing.
>>> Server:         10.104.241.115
>>> Address:        10.104.241.115#53
>>>
>>> ** server can't find burner: SERVFAIL
>>> What is going on????!!! RedHat cant talk DNS??
>>>
>>>
>>>
>>> -- 
>>> Rhl-beta-list mailing list
>>> Rhl-beta-list at redhat.com
>>> http://www.redhat.com/mailman/listinfo/rhl-beta-list
>>
>>
>>
>> Are you specifying the fully qualified domain.  Look at 
>> /etc/resolv.conf.  What does it have for its domain?  What does it 
>> have after search? Dan
>>
>>
>>
>> -- 
>> Rhl-beta-list mailing list
>> Rhl-beta-list at redhat.com
>> http://www.redhat.com/mailman/listinfo/rhl-beta-list
>
>
>
>
> -- 
> Rhl-beta-list mailing list
> Rhl-beta-list at redhat.com
> http://www.redhat.com/mailman/listinfo/rhl-beta-list

More information about the test mailing list