Shorewall users - Apr 2003 - Shorewall 1.4.1a and DNS

Hello, i got a porblem with the DNS servers...

I don''t know if it is shorewall or it is my ISPs DNS server who is the 
problem.
On some servers it takes 3 requests before i get the ip or the domainname.
I have just installed Redhat 8.0 and Shorewall 1.4.1a on a gateway and i 
just
started to see this problem i have had it before but not more then one 
time/week
or something.

I think it is my ISP who is the problem but i just wanted to check if it 
can be
shorewall that blocks any thing. I can''t find anything in the log to 
show that
shorewall have droped any DNS response.
One problem that i see is that my DNS server is 10.0.0.1 and 10.0.0.2, 
and my
network got 10.1.2.0/24 (don''t know if /24 is right).


/Rickard

On Tue, 15 Apr 2003, Rickard Eriksson wrote:
>     Hello, i got a porblem with the DNS servers...
> 
> I don''t know if it is shorewall or it is my ISPs DNS server who is
the
> problem.
> On some servers it takes 3 requests before i get the ip or the domainname.
> I have just installed Redhat 8.0 and Shorewall 1.4.1a on a gateway and i 
> just
> started to see this problem i have had it before but not more then one 
> time/week
> or something.
> 
> I think it is my ISP who is the problem but i just wanted to check if it 
> can be
> shorewall that blocks any thing. I can''t find anything in the log
to
> show that
> shorewall have droped any DNS response.
Sounds like your ISP''s server may be slow responding -- Shorewall
silently
drops DNS responses that arrive after the client has given up and sent 
another DNS query using the same local port. 
> One problem that i see is that my DNS server is 10.0.0.1 and 10.0.0.2, 
> and my
> network got 10.1.2.0/24 (don''t know if /24 is right).
> 
Without knowing more about your network setup, it''s impossible for us
to
say....

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
Shoreline,     \ http://www.shorewall.net
Washington USA  \ teastep@shorewall.net