www.zeroshell.org

maxchock · Joined: 24 Jun 2010 Posts: 7

Hi all,

I'm very new to Zeroshell, and I have little knowledge about networking. I'm trying to setup a load balancer which can do traffic shaping for my Internet Cafe. Before deploy to a real PC I actually have it install in a VirtualBox.

here is the setup of my environment.

here is the screenshot of the zeroshell-> setup->network

here is the screenshot of "NetBalancer"

i can online using DEFAULT GATEWAY or Streamyx but when I enable Load balancing, the Zeroshell itself fail to run the Ping test under "Utilities"-> IP Check

As it's return the DNS Lookup ERROR, I did actually add a line into "DNS Forwarder"

The Zeroshell still fail on the Ping test if keyin domain name such as google.com but it return success if I key in google's IP instead of URL.

So I wish someone can help to solve my problem. Thanks for helping in advance.

ppalias · Joined: 17 Dec 2008 Posts: 1151 Location: Athens, Greece

First post here the contents of the "DNS Options" window that pops up. I suspect it is a query - recursion issue.

maxchock · Joined: 24 Jun 2010 Posts: 7

is this the one you meant?

ppalias · Joined: 17 Dec 2008 Posts: 1151 Location: Athens, Greece

Yes... add the following

maxchock · Joined: 24 Jun 2010 Posts: 7

I tried using

"recursion yes;
allow-query {192.168.1.0/8;127.0.0.0/8;};"

and

"recursion yes;
allow-query {10.1.1.0/8;127.0.0.0/8;};"

neither of them are working, it gave same error.

ppalias · Joined: 17 Dec 2008 Posts: 1151 Location: Athens, Greece

Do me a favor and open a shell to execute these commands.

maxchock · Joined: 24 Jun 2010 Posts: 7

ok,

"cat /etc/resolv.conf" return
nameserver 127.0.0.1

dig www.yahoo.com return
; <<>> DiG 9.5.1-P2 <<>> www.yahoo.com
;; global options: printcmd
;; connection timed out; no servers could be reached

netstat -anp | grep :53
tcp 0 0 192.168.250.254:53 0.0.0.0:* LISTEN 1545/named
tcp 0 0 192.168.0.55:53 0.0.0.0:* LISTEN 1545/named
tcp 0 0 10.1.1.55:53 0.0.0.0:* LISTEN 1545/named
tcp 0 0 192.168.0.55:53 0.0.0.0:* LISTEN 1545/named
tcp 0 0 192.168.141.142:53 0.0.0.0:* LISTEN 1545/named
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 1545/named
udp 0 0 192.168.250.254:53 0.0.0.0:* LISTEN 1545/named
udp 0 0 192.168.0.55:53 0.0.0.0:* LISTEN 1545/named
udp 0 0 10.1.1.55:53 0.0.0.0:* LISTEN 1545/named
udp 0 0 192.168.1.55:53 0.0.0.0:* LISTEN 1545/named
udp 0 0 192.168.141.142:53 0.0.0.0:* LISTEN 1545/named
udp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 1545/named

I tried to vi the resolv.conf, but permission is denied even i "su"...

ppalias · Joined: 17 Dec 2008 Posts: 1151 Location: Athens, Greece

named is up, but no servers can be reached. I suspect a firewall blocking your box from reaching the forwarders.
Is

maxchock · Joined: 24 Jun 2010 Posts: 7

ping is working and replied.

below is the screen shot of iptable.

ppalias · Joined: 17 Dec 2008 Posts: 1151 Location: Athens, Greece

As I said there is a firewall blocking you.

maxchock · Joined: 24 Jun 2010 Posts: 7

hmm...

I don't understand, because i don't have any firewall setup in my network. And why the DNS can reply back if i'm using only 1 WAN?

Thanks for helping me. Really wish to deploy zeroshell in my cafe.

ppalias · Joined: 17 Dec 2008 Posts: 1151 Location: Athens, Greece

Have you added the

maxchock · Joined: 24 Jun 2010 Posts: 7

add to where?? which part?

Thanks.

ppalias · Joined: 17 Dec 2008 Posts: 1151 Location: Athens, Greece

In the DNS-> Options tab.