From owner-freebsd-questions Mon Oct 29 0:40:44 2001 Delivered-To: freebsd-questions@freebsd.org Received: from skinhorse.quelleinc.com (sub19-65.member.dsl-only.net [63.105.19.65]) by hub.freebsd.org (Postfix) with ESMTP id 37CFA37B403 for ; Mon, 29 Oct 2001 00:40:42 -0800 (PST) Received: from Pizan (dsl-206-103-59-111.easystreet.com [206.103.59.111]) by skinhorse.quelleinc.com (Post.Office MTA v3.5.3 release 223 ID# 0-12345L500S10000V35) with SMTP id com for ; Mon, 29 Oct 2001 00:31:19 -0800 From: "Ben Witkowski" To: Subject: Firewall on 4.4 Date: Mon, 29 Oct 2001 00:42:36 -0800 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG FreeBSD firewall.unitedglobaltrading.com 4.4-STABLE FreeBSD 4.4-STABLE #2: Thu Sep 27 18:02:08 PDT 2001 ben@firewall.unitedglobaltrading.com:/usr/obj/usr/src/sys/FIREWALL i386 i've installed a primary dns server on the above machine. the firewall is running "open", as "simple" type doesn't allow tcp traffic through..we still don't know why.. the main question/problem is the name server. it resolves hostnames fine on the internal network, but not on the outside interface. is there some firewall config to allow the name server to send and receive queries from ports other than 53? or should i consider re-configuring bind to revert to its old behavior with the query-source substatement? or is there any other know config elsewhere that might be causing this? much appreciation.. -ben aloha, oregon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message