I futzed with a couple things; the combination of these two changes is
what made it work:
- Tell the client machine to use the router between A and B as default
gateway, instead of the gateway on the far side. (Let the router figure
out where the packet needs to go next)
- Add explicit FORWARD rules to said router to allow UDP port 53 data
through (dport = 53 for queries and sport = 53 for responses.. probably
should tighten it some, but it's not a perimeter firewall).
Thanks for all the input!
~Brian
--
TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
TriLUG Organizational FAQ : http://trilug.org/faq/
TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
