[Preston] DNS Question
Stephen Taylforth
preston at mailman.lug.org.uk
Thu Feb 6 11:58:03 2003
Have you met a program called ident ? It passes back to squid the Username=
who is currently logged onto each machine=2E It appears in squids access =
log file so you can tie one of the little blighters down to a particular m=
achine at a particular time=2E It is installed on the NT/2000/XP machine a=
nd runs as a service=2E It isn't absolutley secure but it probably is secu=
re enough for use in a school=2E We use it at Ribblesdale School in Clithe=
roe to monitor the intenet use of our little darlings=2E
http://freeware=2Eteledanmark=2Eno/identd/
Stephen Taylforth
IT Technician - Ribblesdale School
>Hi all,
>
>Despite spending a small while going through google and the likes,
>there's something I've still not figured out at DNS=2E
>
>Our network uses internal IPs, in the range 10=2E67=2E24=2E0/22=2E We're =
one
>school out of many, and each school in Lancashire has been allocated a
>different set of IPs in this 10=2Ex=2Ex=2Ex line=2E
>
>We have a link to the Internet, and to get an Internet connection, we
>need to point out workstations to the DNS servers 212=2E219=2E82=2E4 and =
>212=2E219=2E83=2E4=2E We then have to point our browsers to
>proxy=2Elancsngfl=2Eac=2Euk:8080 (since they firewall practically everyth=
ing
>and just give us a proxy and DNS)=2E That's fine, and it's what we're
>doing at the moment=2E
>
>I've recently been setting Linux up though and moving some of the
>functions of the network over to Linux - the first and second years now
>have a 25MB quota limit on their N:\ drives, and when they want to go on =
>the Net, instead of going straight to the NGFL proxy, they go to our
>proxy, which asks for their NT username and password again, and then
>checks this off against an ACL in /etc/squid=2Econf to decide whether
>they're allowed on the Internet or not (if anyone wants to know how to
>do this stuff, let me know - I'm slowly writing up documents on how to
>do it and putting them on my site)=2E
>
>I know we don't need it, but I'd /like/ to have internal DNS, if at all
>possible=2E Partly just so that I can set up a DNS server somewhere and
>learn how it's done=2E I've read a fair bit into BIND, and messed with
>config files, but that's all=2E Here's my question though:
>
>Our Linux server is 10=2E67=2E24=2E6=2E It'd be much easier to call this =
>something like timmy, for instance, so that I can refer people to our
>internal web site with:
>
>http://timmy
>
>instead of:
>
>http://10=2E67=2E24=2E6
>
>Similarly, it'd be useful to be able to refer to things like network
>printers, wireless access points, important workstations, etc, by
>hostnames=2E We've got NetBIOS names, which are sometimes useful - but
>they're not always - they don't work for everything=2E
>
>So that's the question: how does DNS work on an internal network? Can I
>set up a DNS server that can resolve things on 10=2E67=2E24=2E0/22 by its=
elf
>or send on the request to a 'real' DNS server on the Internet if that
>doesn't work?
>
>If someone could clear that up for me, it'll save me a load of
>reading=2E=2E=2E thanks :))
>
>Andrew
>
>
>_______________________________________________
>Preston mailing list
>Preston@mailman=2Elug=2Eorg=2Euk
>http://mailman=2Elug=2Eorg=2Euk/mailman/listinfo/preston