|
|
Hi, Rob, On Tue, 2004-03-02 at 20:38, Rob McGee wrote: > On Tue, Mar 02, 2004 at 02:38:28PM -0800, John Locke wrote: > > So anybody have a tip about temporarily stopping DHCP updates to > > /etc/resolv.conf, preferably only while the tunnel is up? So far, this > > Not too well without knowing what DHCP client you're using. I use > dhcpcd, and "man dhcpcd" lists a "-R" option to do that. dhclient has a > similar option, I'm sure. > Looks like it's dhclient. > > is looking like one case where Windows works better--keeping separate > > DNS settings for each interface... > > Opinions on what is better, and why, may vary. Suffice to sai I do not > agree with that opinion ... > Hey, that wasn't a blanket statement... Just one tiny instance of acknowledgment of one particular thing that works better in just this one case... Most of the time I'm slamming Windows... about the only time I touch it is to go in and fix problems for my clients... In the past couple weeks I've rescued a couple of trashed Windows hard drives by popping in Knoppix and networking it to my Mandrake laptop to rescue data from the hard drive, before reformatting... But reinstalling Windows is good for business--they keep having to call me back ;-p > > P.S. OpenVPN has a few pages devoted to it in my upcoming book, "Open > > Source solutions for small business problems," coming to a bookstore > > near you in May... > > ... and I daresay you're not coming across as a very good salesman for > your book. :) Ouch! Well, I hope you won't let that impression get in the way of checking it out. It's actually written for more of a business than a technical audience--I'm hoping it will bridge the gap, help make open source less of a scary thing for businesses who still cling to Microsoft... > Perhaps you should have stuck with writing about political philosophy. > You were really a pioneer in THAT field. ;) :) Hey now, how about checking out what I wrote before jumping to conclusions! http://www.studiob.com/authorbio.cfm?client_id=118 Anyway, back to the problem at hand... Philip Seaver pointed me to a solution that seems to work. I created an /etc/dhclient.conf file, and added two lines: prepend domain-name-servers 192.168.9.39; prepend domain-name "freelock.lan"; This puts my DNS server at the top of the list. Unfortunately this means that when I'm not connected to the tunnel, name lookups take FOREVER... (well, okay, maybe it's only a couple extra seconds). With the tunnel, they're nice and speedy. I tried to append the domain name servers, but this didn't work because my internal domain is obviously not recognized on the public Internet. So... I'm still looking for a more elegant solution, that prepends the name server only when the tunnel is up, and prevents it from getting updated by renewing leases... but I have a workable solution. Thanks, -- John Locke Open Source solutions for small business problems http://freelock.com ____________________________________________ Openvpn-users mailing list Openvpn-users@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/openvpn-users |