Page 1 of 1

Module that convert's private addresses to domain names?

Posted: Fri Aug 18, 2006 9:58 pm
by core
Hi.

Sorry for bad english.

Is there some module that tell ircd to "convert" private (10/8, 172.16/12, 192.168/16) ip-addresses that not resolves to domain names, to domain names such as "ip-10-1-2-3.my.server.net" ? for example i need to setup gline for that addresses, but in case of "*@10.1.2.3" - gline will affect private addresses on all local networks, not only network connected to "selected" server.

Of course, i can use kline-s, but there is no way to set-up kline on one server remotely (in case when i have not o-lines on that server, and services can't use svso).

Thanks.

Posted: Sat Aug 19, 2006 10:41 am
by Jobe
A ban on any private address will ONLY affect the private address if it is on the SAME network as your IRCd. The reason for this is because Unreal would not see any other computer using that IP because it is NOT a public internet address.

As for making private IP's resolve to a domain name you would have to set up your own DNS server and set a reverse zone.

Posted: Sat Aug 19, 2006 3:20 pm
by core
>As for making private IP's resolve to a domain name you would have to set up your own DNS server and set a reverse zone.

Yes, this is the solution, but there are few "only local" irc servers, that have not access to the internet and to the DNS servers, and unfortunately in some cases it is impossible to setup local DNS servers due to ISP network policy.

>A ban on any private address will ONLY affect the private address if it is on the SAME network as your IRCd. The reason for this is because Unreal would not see any other computer using that IP because it is NOT a public internet address.

Why? You mean channel ban's or glines?

For example, there are 2 linked servers, they use internet for linking and both connected to different LAN's, both 192.168.0.0/24. I think if there is gline for *@192.168.0.10, it will affect both users in LAN1 and LAN2 with address 192.168.0.10, even if they are absolute different users, isn't it?


Even if it's a channel ban - ircd's exchanging with users ip-addresses (in NICK command), and channel bans affects private addresses in all networks (on all servers), isn't they?

Posted: Sat Aug 19, 2006 3:57 pm
by Jobe
Any ban on an IP will only affect the IP if that's what the IRCd sees the client as connecting from. Say for example my PC on my home network has the IP 192.168.1.4 which then goes out through a router to connect to an IRC server. It's the IP assigned by the ISP that will be seen by the IRCd. If however you i was to run an IRCd on my computer and banned 192.168.1.4 i would not be able to connect. If it was a GLine then if somebody else ran an IRCd connected to my IRCd on their network and happened to have a computer with the IP 192.168.1.4 then yes that would be banned too.

As for DNS servers, ISP policy's can ONLY prevent you from allowing outside access to them. If they're kept entirly internal with NO outside access (including NOT forwarding port 53) the ISP has no right to tell you you cannot run one.

ISP's have no authority to dictate what you run on your computer but they do however have the right to tell you what you use their connection for. So as long as if you are running a DNS server nobody can access it through their connection they cannot stop you from using it.