Date: Fri, 2 Feb 2001 23:26:48 +0200 From: Neil Blakey-Milner <nbm@mithrandr.moria.org> To: Peter Brezny <peter@sysadmin-inc.com> Cc: freebsd-net@freebsd.org Subject: Re: ipfw not allowing dns traffic Message-ID: <20010202232648.A29699@rapier.smartspace.co.za> In-Reply-To: <000801c08d5e$5f4259c0$46010a0a@sysadmininc.com>; from peter@sysadmin-inc.com on Fri, Feb 02, 2001 at 04:23:22PM -0500 References: <000801c08d5e$5f4259c0$46010a0a@sysadmininc.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri 2001-02-02 (16:23), Peter Brezny wrote: > I thought I had everything. > > # Allow DNS traffic from internet to query your DNS (for reverse > # lookups etc). > $fwcmd add allow tcp from any 53 to $ns1 53 setup > $fwcmd add allow udp from any 53 to $ns1 53 > $fwcmd add allow udp from $ns1 53 to any 53 > > but nslookup's fail from outside the firewall on another machine in nslookup > with server set to my firewall machine. > > What have i missed? Not all requests will originate from port 53. Neil -- Neil Blakey-Milner nbm@mithrandr.moria.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010202232648.A29699>