On Sun, Oct 27, 2002 at 03:24:07PM +, Stacey Roberts typed:
Hello,
I don't know if this is related to post earlier today [FBSD 4.7
reset itself - lots of DENY UDP messages in /var/log/security], but
I've been trying to trouble shoot the DENY messages in
/var/log/security using dig:
Hi Ruben,
Thanks much for the reply - comments inline...,
Verifying relevant ipfw rules:
# Allow out access to Internet Domain name server
$fwcmd add 00618 allow tcp from any to any 53 out via $oif setup
keep-state
$fwcmd add 00619 allow udp from any to any 53 out via $oif setup
Just checked against http://www.pgp.net/wwwkeys.html to verify:
pub 2048R/DC92FBD7 2002-08-03 Stacey Roberts [EMAIL PROTECTED]
Key fingerprint = 04 2E 82 F6 3E 78 25 14 42 84 90 E7 B7 B1 F7 26
Verbose:
Public Key Server -- Verbose Index ``0xDC92FBD7 ''
Type bits/keyIDDate User
On Sun, Oct 27, 2002 at 05:18:10PM +, Stacey Roberts wrote:
Just checked against http://www.pgp.net/wwwkeys.html to verify:
pub 2048R/DC92FBD7 2002-08-03 Stacey Roberts [EMAIL PROTECTED]
Key fingerprint = 04 2E 82 F6 3E 78 25 14 42 84 90 E7 B7 B1 F7 26
Verbose:
Public Key
Okay,
I've been hacking about with my ipfw rules in order to nail this
down, but I'm still coming up against a wall here..,
I've made this change:
# Allow out access to Internet Domain name server
$fwcmd add 00617 allow tcp from any to any 53 out via $oif setup
keep-state
#$fwcmd add 00618
On Sun, Oct 27, 2002 at 06:29:16PM +, Stacey Roberts wrote:
Subject: Re: dig . ns @b.root-servers.net - Connection refused. WHY?
[related to FBSD 4.7 reset itself - lots of DENY UDP mess]ages in
/var/log/security
From: Stacey Roberts [EMAIL PROTECTED]
To: Ruben de Groot [EMAIL PROTECTED]
Hello,
Thought you'd like to know that the amendments you suggested works
for me now.
Thank you very much for the time and effort! See:
$ dig . ns @c.root-servers.net
; DiG 8.3 . ns @c.root-servers.net
; (1 server found)
;; res options: init recurs defnam dnsrch
;; got answer:
;;
