RE: [squid-users] DNS cache-only server question

> -----Original Message-----
> From: hno@hem.passagen.se [mailto:hno@hem.passagen.se]On Behalf Of
> Henrik Nordstrom
> Sent: Monday, September 17, 2001 5:42 PM
> To: pablo@purecarbon.com
> Cc: squid-users@squid-cache.org
> Subject: Re: [squid-users] DNS cache-only server question
>
>
> Pablo Sanchez wrote:
>
> > As I said, I can 'ping' 'qa-three.foobar.com' from both
> the Linux box
> > and my other machines behind the firewall. It's just
> that SQUID is
> > kinda saying, 'no way baby.' It's being too rigorous. :)
>
> To this I disagree. You are not pin[g]ing qa-three.foobar.com, you
are
> pinging qa-three.foobar.com.mydomain.com. There is a huge difference
> between the two.

Perhaps I'm not understanding you correctly, I apologize. But here's
what I do on my Linux box:

pablo-1003.chaussy-[pablo]: ping -c 1 qa-one.foobar.com
Warning: no SO_TIMESTAMP support, falling back to SIOCGSTAMP
PING qa-one.foobar.com (XXX.YYY.ZZZ.YYY) from 10.0.0.2 : 56(84) bytes
of data.
64 bytes from qa-one.foobar.com (XXX.YYY.ZZZ.YYY): icmp_seq=0 ttl=242
time=1.198 sec

--- qa-one.jobplanet.com ping statistics ---
1 packets transmitted, 1 packets received, 0% packet loss
round-trip min/avg/max/mdev = 1198.831/1198.831/1198.831/0.000 ms
pablo-1004.chaussy-[pablo]:

> If you add a trailing dot you will notice
> (a trailing
> dot tells DNS that the name is fully qualified). As said
> earlier Squid
> only accepts fully qualified DNS names, as required by the HTTP
> standard.
>
> If you cannot add qa-three.foobar.com. (the real name, not
> a dummy alias
> on wa-three.fobar.com.yourdomain.com) to your DNS,

I tried adding a qa-three.jobplanet.com. (dot at the end but this
didn't accomplish anything either -- problem is still there).

> then
> there is another
> path out: Use /etc/hosts. In /etc/hosts you can write any
> mappings you
> like without being restricted by the rules set out by DNS
> delegation. It
> will obviously be local for the host where /etc/hosts
> resides, but as
> your goal is telling a Squid server how to look up a faked name this
> should not be much of a problem.

I tried that, making an entry in /etc/hosts and removing the entry in
the local DNS cache-only server and it didn't work unfortunately
either.

I appreciate your patience, any other suggestions? Should I hook
dnsserver with a wrapper? Or is there a switch within the IPC (I'm
assuming SQUID uses IPC's) to have SQUID not worry so much for FQDN?

Thx a lot!

---
Pablo Sanchez         mailto:pablo@purecarbon.com
Ph  : 303.939.8897       Fax: 603.720.7723
Cell: 303.717.5889