[Ewrt-devel] Nocat

A. Brandon Psmythe
Sun May 16 23:14:43 PDT 2004 

Hey all,
It would be easy enough to set it up such that if there were no DNS 
Servers set, then to allow all port53 traffic out.  However, intuitively 
I do not think that makes the best sense.  Not reading a man page, I 
would assume that setting a variable to "null" would disable that 
feature.  How about we allow "ALL" as a setting?

Doug,
The DNSHost setting should be the same servers that the DHCP server 
hands out.  Could you send us a basic diagram of how the network is set 
up, and where it is failing?  As Irving asked, I am also wondering what 
your network setup looks like.

thanks,
        brandon




Irving Popovetsky wrote:

> Hi Doug,
> 
> 
>>-----Original Message-----
>>From: ewrt-devel-bounces at portless.net 
>>[mailto:ewrt-devel-bounces at portless.net] On Behalf Of Doug Dalton
>>Sent: Saturday, May 15, 2004 2:45 PM
>>To: ewrt-devel at portless.net
>>Subject: Re: [Ewrt-devel] Nocat
>>
>>
>>Does no cat work in this release (.2),  
> 
> 
> Our current release is 0.2-beta1.  NoCatSplash works pretty well.
> See the TODO file for what's going on:
> 
> http://portless.net/cgi-bin/cvsweb.cgi/ewrt/TODO
> 
> 
> 
>>I have gotten everything else 
>>working,  but if I do Nocat I lose routing from the wLan / 
>>LAN and only 
>>get redirected if I go to the lan gateway.  I saw on another 
>>list that 
>>the DNS Addr in /etc/nocat.conf  had to be set to the same as 
>>the static 
>>dns,  is this the same requirement with the ewrt port?
> 
> 
> Are you doing something non-standard here?   I know that NoCatSplash has a
> bad habit of blowing over various iptables rules because it assumes some
> kind of generic setup.
> 
> 
> Brandy, what do you think about simply allowing all udp/53 traffic outbound
> and doing away with the stupid DNShosts thing? 
> Or, an even better idea:   If DNSHosts is left blank, allow all udp/53
> outbound. 
> 
> -Irving

-- 
-A. Brandon Psmythe
ProStructure Consulting             http://www.prostructure.com
Network and Security Consulting           phone: (503) 288-1566
                "Crafting Connectivity that Matters"

More information about the Ewrt-devel mailing list