Date: Fri, 2 Feb 2001 15:29:26 -0600 (CST) From: Mike Silbersack <silby@silby.com> To: Peter Brezny <peter@sysadmin-inc.com> Cc: <freebsd-net@freebsd.org> Subject: Re: ipfw not allowing dns traffic Message-ID: <Pine.BSF.4.31.0102021528500.4881-100000@achilles.silby.com> In-Reply-To: <000801c08d5e$5f4259c0$46010a0a@sysadmininc.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 2 Feb 2001, Peter Brezny wrote: > I thought I had everything. > > # Allow DNS traffic from internet to query your DNS (for reverse > # lookups etc). > $fwcmd add allow tcp from any 53 to $ns1 53 setup > $fwcmd add allow udp from any 53 to $ns1 53 > $fwcmd add allow udp from $ns1 53 to any 53 > > but nslookup's fail from outside the firewall on another machine in nslookup > with server set to my firewall machine. > > What have i missed? > > Peter Brezny > SysAdmin Services Inc. Use dig. nslookup does superfluous lookups which will display false failures in many cases. Mike "Silby" Silbersack To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.31.0102021528500.4881-100000>