"[EMAIL PROTECTED]" <[EMAIL PROTECTED]> writes:
> Content-Type: TEXT/PLAIN; CHARSET=US-ASCII
> Content-ID: <[EMAIL PROTECTED]>
>
> hi all,
>
> I have started setting up my firewall and have run into trouble with DNS
> lookups. I beleive that I have enabled DNS out but the log file says that
> I am denying it. The ISP's DNS servers are at 203.13.174.1 and
> 203.13.174.15. All the requests for DNS Lookups are coming from squid on
> port 1032 and going to port 53 on the ISP's end.
>
> What have I missed??
>
> regards,
> Linz
DNS uses UDP (and sometimes TCP). You have to allow UDP *and* TCP
packets out for DNS to work properly... it seems that you're only
allowing TCP packets out to your DNS servers.
Note that PROTO=17 indicates UDP (see /etc/protocols)
>
>
> Chain output (policy DENY: 1118 packets, 301676 bytes):
> pkts bytes target prot opt tosa tosx ifname mark outsize source
> destination ports
>
> 0 0 ACCEPT tcp ------ 0xFF 0x00 any
>anywhere 203.13.174.15 any -> 0:domain
> 0 0 ACCEPT tcp ------ 0xFF 0x00 any
>anywhere 203.13.174.1 any -> 0:domain
>
[...]
>
> Aug 29 12:10:22 eric kernel: Packet log: output DENY ppp0 PROTO=17
>203.57.114.176:1031 203.13.174.1:53 L=73 S=0x00 I=3144 F=0x0000 T=64 (#12)
--
:%s/[Ll]inux/GNU\/Linux/g
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
