Missed dns

Tue, 21 Mar 2000 02:31:17 +0200

Well, the problem is unsuccesfull dns queries.

Our iptables is next:

Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy DROP)
target     prot opt source               destination
ownchain    all  --  anywhere             anywhere

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Chain ownchain (1 references)
target     prot opt source               destination
ACCEPT     all  --  10.0.1.0/25          anywhere
ACCEPT     icmp --  anywhere             10.0.1.0/25
ACCEPT     tcp  --  anywhere             10.0.1.0/25        tcp
Flags:!SYN/SYN,RST,ACK
DROP       udp  --  anywhere             10.0.1.0/25        udp
dpts:1024:65535
DROP       udp  --  anywhere             10.0.1.0/25        udp dpts:0:1024

We're afraid we wrote some rule(s) more which disappeared in next reboot
:(((. Anyway, all dns lookups fail nowadays without rule to accept all tcp
traffic from our dns servers.

Any help?
--
Mikael Mätäsaho
matasmi@iki.fi
+358 400 966090