Csanyi Pal wrote: >If you think that that my Shorewall setup is OK then please point me >in the right direction how to solve this problem!
First step - calm down, take a deep breath, and work methodically. From your clients, can the contact services by IP address ? Can they ping external addresses ? If they can then it shows your routing and/or NAT is working OK. If not, then fix that. What do your clients have configured for a resolver ? Is it what you thought they had configured ? When you make a query from a client, can you see the query packet on the wire with a packet sniffer (I like wireshark, or more normally the text-only version tshark) ? If not, then look into why the client isn't sending the packet. Can you see the packet inbound on your gateway (which I assume is doing your DNS) with a packet sniffer ? Does it have a DNS service running ? Does the DNS service log the query and/or any errors ? Does the DNS service resolve the address queried ? Does it return the result to the client ? Does the client receive it ? As you can see, most of this does not involve Shorewall - but there are steps where packets could be blocked by one device or the other. ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
