Date: Mon, 16 Apr 2001 09:04:25 -0500 (CDT) From: Nick Rogness <nick@rogness.net> To: Caleb Walker <cwalker@cwalk.org> Cc: Dru <genisis@istar.ca>, questions@FreeBSD.ORG Subject: Re: IPFW rules Message-ID: <Pine.BSF.4.21.0104160857460.66955-100000@cody.jharris.com> In-Reply-To: <017201c0c634$6b5893a0$2701a8c0@cwalk.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 15 Apr 2001, Caleb Walker wrote: > This brings me to another question about my firewall. I have windows > users that are behind a firewall and DNS servers are on the other > side. I notice that windows sends dns queries from some unknown port > number to port 53. I have been using keep-state for this to work b8ut > I dont like doing that. Is there another way to make sure that DNS > queries are passed all of the time? ipfw add 100 allow udp from any to any 53 ipfw add 101 allow udp from any 53 to any Of course, the prefered method is to probably use keep-state. The 2 rules above are not very secure at all...but they will pass DNS traffic just fine. Nick Rogness <nick@rogness.net> - Keep on Routing in a Free World... "FreeBSD: The Power to Serve!" To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0104160857460.66955-100000>