From owner-freebsd-questions Thu Mar 23 21:54:56 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mercury.is.co.za (mercury.is.co.za [196.4.160.222]) by hub.freebsd.org (Postfix) with ESMTP id 5DC2D37C00C for ; Thu, 23 Mar 2000 21:54:49 -0800 (PST) (envelope-from marcs@draenor.org) Received: from admin.is.co.za (admin.is.co.za [196.23.0.9]) by mercury.is.co.za (8.9.3/8.9.3) with ESMTP id HAA03171; Fri, 24 Mar 2000 07:54:35 +0200 Received: from gizmo.is.co.za (gizmo.is.co.za [196.23.0.47]) by admin.is.co.za (8.8.6/8.7.3/ISsubsidiary#1) with ESMTP id HAA10314; Fri, 24 Mar 2000 07:54:34 +0200 (GMT) Received: by gizmo.is.co.za (Postfix, from userid 1332) id 4A8D6152; Fri, 24 Mar 2000 07:55:23 +0200 (SAST) Date: Fri, 24 Mar 2000 07:55:23 +0200 From: Marc Silver To: J A Shamsi Cc: freebsd-questions@freebsd.org Subject: Re: DNS and FIREWALL Message-ID: <20000324075523.E59219@draenor.org> References: <20000323175541.25633.qmail@web4107.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 1.0.1i In-Reply-To: <20000323175541.25633.qmail@web4107.mail.yahoo.com>; from jashamsi@yahoo.com on Thu, Mar 23, 2000 at 09:55:41AM -0800 X-Operating-System: FreeBSD 4.0-RELEASE Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hey there, Bind (all name servers in fact) use the TCP port 53. You must however also make sure that UDP (port 53 as well) is left open, otherwise you won't be able to make any DNS requests. Something like: 01100 allow udp from x.x.x.x 53 to x.x.x.x 01200 allow udp from x.x.x.x to any 53 in ipfw will work just fine for normal requests, but remember that you must also allow people to connect to port 53 on your server if you want them to be able to make DNS queries to it. Hope this helps. Cheers, Marc On Thu, Mar 23, 2000 at 09:55:41AM -0800, J A Shamsi wrote: > Hello > I am trying to configure DNS on a machine protected by > firewall. > I have named 8.xx > do I need to use port 53 specifically. > Is there any thing else I need to know beside that. > Thanks > jawwad > > __________________________________________________ > Do You Yahoo!? > Talk to your friends online with Yahoo! Messenger. > http://im.yahoo.com > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message