check your logs to see if you are killing the inbound dns return traffic remember its not established it must be allowed in that direction...
piranha... /* My Lord Tzu, the first tao of combat is learning retreat is a weapon Yuen Li, Archery Sifu to General Sun Tzu */ >From: Rick Brown <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: DNS vs. the firewall >Date: Thu, 6 Dec 2001 07:31:20 -0800 (PST) > >I'm still struggling trying to get my internal DNS >server to forward requests to my ISP's DNS server. I >can access web sites via the IP address but I can't >get DNS resolution to work. I can ping the ISP's DNS >servers from my DNS servers and I have the ISP's DNS >servers set up as forwarders for my internal DNS >servers. I am allowing UPD and TCP 53 from the my DNS >servers to the ISP's servers. What am I missing? >When I do an nslookup on something like www.google.com >it immediately responds that my DNS server doesn't >know what it is. Is this some start of authority >thing? The internal domain is registered and the name >servers are listed by Network Solutions as my ISP's >name servers. I'm stuck and it's putting me in a real >bind. PLEASE HELP! > >__________________________________________________ >Do You Yahoo!? >Send your FREE holiday greetings online! >http://greetings.yahoo.com >_______________________________________________ >Firewalls mailing list >[EMAIL PROTECTED] >http://lists.gnac.net/mailman/listinfo/firewalls _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
