Iptables

Well, it all seemed straight forward to me and the how-to's made it seem
simple too...Since iptables was blocking my dns before and I didn't want to
leave it turned completly off I tried to add a rule to allow traffic on port
53. Here is the command I used:

iptables -A INPUT -p udp --dport 53 -j ACCEPT

Then an "iptables -L" comes out with:

ACCEPT udp -- anywhere anywhere udp dpt: domain

after saving and restarting iptables though my nslookup can't contact my dns
server. I also tried adding a rule to my output chain as well but that
didn't make a difference. There is also a set of rules that came with the OS
but all but 1 of the rules are ACCEPT rules, the one REJECT rule is:

REJECT all -- anywhere anywhere reject-with
icmp-host-prohibited

I don't know what this rule means exactly but I figure it shouldn't effect
DNS. Oh yes, and I have made sure that my dns server is using specifically
port 53 by uncommenting the "query-source" line in "named.conf".

     Brian ThunderEagle
     thundereagle@hotmail.com

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Sun Jun 4 10:14:43 2006