When I try to turn firewalling on, I'm having long DNS delays, and reports
like this in my logfile
Feb 21 17:41:53 stravinsky kernel: Packet log: input DENY ppp0 PROTO=17
129.78.###.###:65535 129.78.###.###:65535 L=28 S=0x00 I=19120 F=0x4022 T=252 (#17)
(with actual IP addresses #ed)
But ipchains -L reports
ACCEPT udp ------ anywhere anywhere 65535 -> 65535
ACCEPT tcp ------ anywhere anywhere 65535 -> 65535
and the script I'm using to set up the firewalling has the rules
ipchains -A input -p udp -s $ANY domain -d $ANY 1024:65535 -i ppp0 -j ACCEPT
ipchains -A input -p udp -s $ANY domain -d $ANY domain -i ppp0 -j ACCEPT
ipchains -A input -p udp -s $ANY 1024:65535 -d $ANY domain -i ppp0 -j ACCEPT
ipchains -A input -p udp -s $ANY 65535 -d $ANY 65535 -i ppp0 -j ACCEPT
(These started off more restrictive, but I've been loosening them to try
to get this to work.)
Can someone tell me what I'm doing wrong?
Danny.
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
