Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!news.cs.su.oz.au!metro!metro!munnari.OZ.AU!news.Hawaii.Edu!ames!enews.sgi.com!super.zippo.com!zdc!su-news-hub1.bbnplanet.com!cpk-news-hub1.bbnplanet.com!news.bbnplanet.com!rill.news.pipex.net!pipex!tank.news.pipex.net!pipex!news.utell.co.uk!usenet
From: brian@shift.lan.awfulhak.org (Brian Somers)
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: Quick DNS and telnet/ftp query.
Date: 18 Mar 1997 14:59:23 GMT
Organization: Awfulhak Ltd.
Lines: 45
Message-ID: <5gmakb$icd@ui-gate.utell.co.uk>
References: <332E3238.41C67EA6@silas.cc.monash.edu.au>
Reply-To: brian@awfulhak.demon.co.uk, brian@utell.co.uk
NNTP-Posting-Host: shift.utell.net
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Newsreader: knews 0.9.8
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:37350
In article <332E3238.41C67EA6@silas.cc.monash.edu.au>,
Chooka <dhenshaw@silas.cc.monash.edu.au> writes:
> Hi all.
>
> I've got a quick question related to the DNS and telnet/ftp services.
>
> Currently I have one machine that has CNAME entries in the DNS data.
> i.e. www.icon.com.au (NOTE that this is not an Internet Connected)
>
> which is a CNAME for t-rex.icon.com.au using 10.0.0.1
>
> There is also a CNAME to ftp.icon.com.au
>
> Can I prevent people telnet'ing to either of these CNAME's whilst still
> allowing telnet access to t-rex.icon.com.au ?
>
> Similarly, how about inhibiting ftp access to all but ftp.icon.com.au ?
>
> My guess is I'm going to have to set up some kind of IP aliasing.
I think you've guessed right :( Even with seperate IP numbers for
each "machine", it's sometimes tricky to stop programs from listening
on *.port :(
> Finally, given that my domain name is icon.com.au is there anyway to set
> up finger so that it will report all users using a machine on that
> domain ?
> i.e. finger icon.com.au reports who is logged in on t-rex.icon.com.au,
> bob.icon.com.au, fred.icon.com.au etc... ?
>
> Thanx in advance,
>
> David Henshaw
Not that I know of unless there's a very smart fingerd on a machine
that's really called icon.com.au and that's capable of talking to
lots of other fingerds (on *.icon.com.au). The normal way to set
this sort of thing up is to have icon.com.au as an MX record (no
actual A record). This means that anything @icon.com.au is invalid
unless you're talking smtp.
--
Brian <brian@awfulhak.demon.co.uk> <brian@freebsd.org>
<http://www.awfulhak.demon.co.uk>
Don't _EVER_ lose your sense of humour !