From owner-freebsd-questions Thu Aug 29 11:52:36 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B133237B400 for ; Thu, 29 Aug 2002 11:52:32 -0700 (PDT) Received: from smtp-send.myrealbox.com (smtp-send.myrealbox.com [192.108.102.143]) by mx1.FreeBSD.org (Postfix) with ESMTP id 42AD843E65 for ; Thu, 29 Aug 2002 11:52:32 -0700 (PDT) (envelope-from jolok@myrealbox.com) Received: from inspectorbox jolok@smtp-send.myrealbox.com [130.94.160.46] by smtp-send.myrealbox.com with NetMail SMTP Agent $Revision: 3.11 $ on Novell NetWare; Thu, 29 Aug 2002 12:52:32 -0600 From: Joshua Lokken To: FreeBSD quest Date: Thu, 29 Aug 2002 11:51:51 -0700 X-Priority: 3 (Normal) Message-Id: Subject: Re: DNS, dynamic and ipfw MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Mailer: Opera 6.04 build 1135 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG 8/29/2002 9:54:24 AM, Joshua Lokken wrote: >I am running 4.6.2 release on a Pentium 150 box as a gateway/firewall. The >same box also runs apache2. I am confused about a few things. I am >assigned an IP via DHCP, and I use dns2go for dynamic DNS. I guess my >problem is keeping things straight. For example, now that I have >joshualokken.com, and am using dns2go, do I use their name servers >exclusively, or do I still need the name servers assigned by my ISP? I am >trying to write working firewall rules, and something's not right. Here's what I >have: > ># >$ns1="isp.name.server.1" >$ns2="isp.name.server.2" ># ... >$fwcmd $flags add allow udp from $ns1 to any in via $oif >$fwcmd $flags add allow udp from $ns2 to any in via $oif ># ... > >Do I need to make additional entries to allow dns2go through, or do I need to >use dns2go's name servers exclusively, allow them, and do away with the isp >name servers? I am confused, any help is appreciated, thanks. > > >Joshua Lokken > > >One doesn't have a sense of humor. It has you. > -- Larry Gelbart > > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message > > My own business always bores me to death; I prefer other people's. -- Oscar Wilde To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message