Forum Replies Created

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • March 29, 2010 at 8:01 pm in reply to: weird dns behaviour #378296
    smith456
    Participant

    A big, fat “Me Too” on this one, zCRP. Same exact situation. For now I’m letting it ride. OS X Server 10.6.3 just released. I’m not banking on a fix and none is stated in Apple’s release notes. We’ll see.

    Best to all.

    Steven

    [QUOTE][u]Quote by: zCRP[/u][p]I am setting up SLS, and for a while everything seemed fine, with the DNS running as advertised. my primary zone is lan.mycompany.com, and I have an A record for miniserver.lan.mycompany.com which is also the machine on which the dns service is running.
    if from terminal i do “host miniserver.lan.mycompany.com” I get 10.0.1.2 as expected, and the reverse also works. “sudo changeip -checkhostname” gives the all clear.

    Now I start playing around with the server a bit (for example adding cname records, SRV etc), and, after a while “sudo changeip -checkhostname” gives me the dreaded fix DNS warning. undoing all the changes does not return the situation to normal. the weird thing is that everything continues to work as before, host and dig give expected results (all green). should I just ignore the error or is there something serious going on?

    thanks! [/p][/QUOTE]

    December 12, 2007 at 6:36 pm in reply to: Macs Violating New ARP Request Security Policy #370786
    smith456
    Participant

    pabugeater,

    The ‘snooping’ entry was from my attempt at running the local machine’s FireWall in ‘stealth’ mode. Normal/Standard FireWall setting (or OFF) solved that problem. In my situation the arps were coming from mDNS responses from networked printers. These arp bursts were tripping the security policy for arps/millisecond. Moderating the policy will be our solution.

    Steve

    [/p][/QUOTE]

    Interesting – as of yesterday I’m seeing the same symptoms, but have no idea as to the cause. This is an Xserve running 10.4.11:

    Dec 11 13:16:45: %SW_DAI-4-DHCP_SNOOPING_DENY: 1 Invalid ARPs (Req) on Po1, vlan 380.([000d.939d.679a/169.254.75.227/0000.0000.0000/128.180.41.1/13:16:44 EST Tue Dec 11 2007])
    Dec 11 13:17:54: %SW_DAI-4-PACKET_RATE_EXCEEDED: 16 packets received in 469 milliseconds on Po1.
    Dec 11 13:17:54: %PM-4-ERR_DISABLE: arp-inspection error detected on Gi1/0/37, putting Gi1/0/37 in err-disable state
    Dec 11 13:17:54: %PM-4-ERR_DISABLE: arp-inspection error detected on Gi1/0/42, putting Gi1/0/42 in err-disable state
    Dec 11 13:17:55: %LINEPROTO-5-UPDOWN: Line protocol on Interface Port-channel1, changed state to down
    Dec 11 13:17:56: %LINK-3-UPDOWN: Interface Port-channel1, changed state to down
    [/p][/QUOTE]

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)
Copyright © 2024 AFP548. All Rights Reserved.