the problem would now be the access from LAN to Linux Box on port 53 try adding this on your INPUT rule
-A INPUT -p udp -m udp --dport 53 -j ACCEPT On 8/13/07, mekyong <[EMAIL PROTECTED]> wrote: > > hi all > > > sorry to forgot posting my iptables, here it is, just got it from surfing > the net: > ==================================================== > #!/bin/sh > # > # FLUSH ALL > /usr/sbin/iptables -F > /usr/sbin/iptables -X > /usr/sbin/iptables -t nat -F > /usr/sbin/iptables -t nat -X > /usr/sbin/iptables -t mangle -F > /usr/sbin/iptables -t mangle -X > # > # ALLOW ETH1 ACCESS TO OUTSIDE > /usr/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE > /usr/sbin/iptables -A FORWARD -i eth0 -o eth1 -m state --state RELATED, > ESTABLISHED -j ACCEPT > /usr/sbin/iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT > ============================================================ > > > dude can your box resolve domains? (try doing an nslookup on any domain on > > your Linux Box but first configure the resolve.conf as local) if so, > > then > > > > result in my nslookup: > ================================================ > > [EMAIL PROTECTED]:~# nslookup www.yahoo.com > Server: 127.0.0.1 > Address: 127.0.0.1#53 > > Non-authoritative answer: > www.yahoo.com canonical name = www.yahoo-ht3.akadns.net. > Name: www.yahoo-ht3.akadns.net > Address: 209.131.36.158 > > > _________________________________________________ > Philippine Linux Users' Group (PLUG) Mailing List > [email protected] (#PLUG @ irc.free.net.ph) > Read the Guidelines: http://linux.org.ph/lists > Searchable Archives: http://archives.free.net.ph >
_________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
