[SLUG] ipchains

Mon, 28 Aug 2000 19:32:23 -0700 

hi all,

I have started setting up my firewall and have run into trouble with DNS
lookups.  I beleive that I have enabled DNS out but the log file says that
I am denying it.  The ISP's DNS servers are at 203.13.174.1 and
203.13.174.15.  All the requests for DNS Lookups are coming from squid on
port 1032 and going to port 53 on the ISP's end.  

What have I missed??

regards,
Linz


Chain output (policy DENY: 1118 packets, 301676 bytes):
 pkts bytes target     prot opt    tosa tosx  ifname     mark       outsize  source    
            destination           ports
    0     0 ACCEPT     tcp  ------ 0xFF 0x00  ppp+                           anywhere  
           0.0.0.0               any ->   0:www
    0     0 ACCEPT     tcp  ------ 0xFF 0x00  any                            anywhere  
           203.41.12.50          any ->   0:pop-3
    0     0 ACCEPT     tcp  ------ 0xFF 0x00  any                            
203.41.12.50         anywhere              0:pop-3 ->   any
  228 16513 ACCEPT     tcp  ------ 0xFF 0x00  ppp+                           anywhere  
           203.13.174.107        any ->   0:webcache
    7   659 ACCEPT     udp  ------ 0xFF 0x00  ppp+                           anywhere  
           203.13.174.107        any ->   0:icp

    0     0 ACCEPT     tcp  ------ 0xFF 0x00  any                            anywhere  
           203.13.174.15         any ->   0:domain
    0     0 ACCEPT     tcp  ------ 0xFF 0x00  any                            anywhere  
           203.13.174.1          any ->   0:domain

    0     0 ACCEPT     all  ------ 0xFF 0x00  eth0                           
192.168.1.0/24       eric.wdbc             n/a
   79 11591 ACCEPT     all  ------ 0xFF 0x00  eth0                           eric.wdbc 
           192.168.1.0/24        n/a
   12  1008 ACCEPT     icmp ------ 0xFF 0x00  any                            anywhere  
           anywhere              any ->   any
  826  373K ACCEPT     all  ------ 0xFF 0x00  lo                             anywhere  
           anywhere              n/a
  641 44366 DENY       all  ----l- 0xFF 0x00  any                            anywhere  
           anywhere              n/a

Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.1:53 L=73 S=0x00 I=3144 F=0x0000 T=64 (#12) 
Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.15:53 L=73 S=0x00 I=3145 F=0x0000 T=64 (#12) 
Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.1:53 L=72 S=0x00 I=3146 F=0x0000 T=64 (#12) 
Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.15:53 L=72 S=0x00 I=3147 F=0x0000 T=64 (#12) 
Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.1:53 L=71 S=0x00 I=3148 F=0x0000 T=64 (#12) 
Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.15:53 L=71 S=0x00 I=3149 F=0x0000 T=64 (#12) 
Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.1:53 L=70 S=0x00 I=3150 F=0x0000 T=64 (#12) 
Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.15:53 L=70 S=0x00 I=3151 F=0x0000 T=64 (#12) 
Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.1:53 L=70 S=0x00 I=3152 F=0x0000 T=64 (#12) 
Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17 203.57.114.176:1031 
203.13.174.15:53 L=70 S=0x00 I=3153 F=0x0000 T=64 (#12)

Reply via email to