Allen suggested, "iptables -L If you see anything saying DROP or DENY either to the ip-range you're talking about or port 53, that's a problem."
and Eric said, "when I query your name server directly with "dig @68.15.153.133 www.kungfugamers.com", the request times out. Are you sure you aren't blocking the requests in some way?" Well, actually, I was all set to tell you the firewall was fine but just for fun I went out to Gibson's Shields Up test (www.grc.com) to see what his system said about my firewall script. According to Shields Up, All my ports are in stealth mode except 80 (which is open) and 53 (which is closed). As this thread has shown, I'm still learning how to administer a linux box, but I thought that if I told it to accept NEW packets on a port and there was something there to catch them, the port was open. Not sure what is qualitatively different about the way I've opened 80 vs 53. In fact, I list them in the beginning in a variable then loop through them later to add the ACCEPT rule sequentially. Being setup the same and both having a process listening on the port, I'd assume they would both show up as open. It's 3:30 am and I'll have to hit this again tomorrow. :-) -Tom Caudron -- [EMAIL PROTECTED] mailing list
