Well, it all seemed straight forward to me and the how-to's made it seem
simple too...Since iptables was blocking my dns before and I didn't want to
leave it turned completly off I tried to add a rule to allow traffic on port
53. Here is the command I used:
iptables -A INPUT -p udp --dport 53 -j ACCEPT
Then an "iptables -L" comes out with:
ACCEPT udp -- anywhere anywhere udp dpt: domain
after saving and restarting iptables though my nslookup can't contact my dns
server. I also tried adding a rule to my output chain as well but that
didn't make a difference. There is also a set of rules that came with the OS
but all but 1 of the rules are ACCEPT rules, the one REJECT rule is:
REJECT all -- anywhere anywhere reject-with
icmp-host-prohibited
I don't know what this rule means exactly but I figure it shouldn't effect
DNS. Oh yes, and I have made sure that my dns server is using specifically
port 53 by uncommenting the "query-source" line in "named.conf".
Brian ThunderEagle
thundereagle@hotmail.com
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Sun Jun 4 10:14:43 2006
This archive was generated by hypermail 2.1.8 : Sun Jun 04 2006 - 10:14:44 AKDT