thr3ads.net - Shorewall users - [Shorewall-users] local dns "53" [Oct 2003]

If this information is useful, please help other people find it:
Share via:

Support

2003-Oct-03 18:31 UTC

[Shorewall-users] local dns "53"

Hi! All

I have some error with my local dns server via my shorewall server. How to
enable to allow my shorewall accept my local dns server.

Oct  4 10:01:36 netgw kernel: Shorewall:FORWARD:REJECT:IN=eth1 OUT=eth1
SRC=192.168.118.200 DST=192.168.118.10 LEN=72 TOS=0x00 PREC=0x00 TTL=127
ID=844 PROTO=UDP SPT=1089 DPT=53 LEN=52


Below is what i have set in my rules, is it correct ?

ACCEPT     loc          fw              icmp    8
ACCEPT     fw           net             icmp    8
ACCEPT  loc:192.168.118.10      fw      tcp     53
ACCEPT  loc:192.168.118.10      fw      udp     53



Best Regards,
Support

Tom Eastep

2003-Oct-03 19:08 UTC

head link

[Shorewall-users] local dns "53"

On Sat, 4 Oct 2003, Support wrote:
> I have some error with my local dns server via my shorewall server. How to
> enable to allow my shorewall accept my local dns server.
>
> Oct  4 10:01:36 netgw kernel: Shorewall:FORWARD:REJECT:IN=eth1 OUT=eth1
> SRC=192.168.118.200 DST=192.168.118.10 LEN=72 TOS=0x00 PREC=0x00 TTL=127
> ID=844 PROTO=UDP SPT=1089 DPT=53 LEN=52
>
>
> Below is what i have set in my rules, is it correct ?
>
Probably -- but messages generated out of the FORWARD chain have nothing
to do with rules; see FAQ 17.

-Tom
--
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net

Tom Eastep

2003-Oct-04 07:23 UTC

head link

[Shorewall-users] local dns "53"

On Fri, 2003-10-03 at 19:08, Tom Eastep wrote:> On Sat, 4 Oct 2003, Support wrote:
> 
> > I have some error with my local dns server via my shorewall server.
How to
> > enable to allow my shorewall accept my local dns server.
> >
> > Oct  4 10:01:36 netgw kernel: Shorewall:FORWARD:REJECT:IN=eth1
OUT=eth1
> > SRC=192.168.118.200 DST=192.168.118.10 LEN=72 TOS=0x00 PREC=0x00
TTL=127
> > ID=844 PROTO=UDP SPT=1089 DPT=53 LEN=52
> >
> >
> > Below is what i have set in my rules, is it correct ?
> >
> 
> Probably -- but messages generated out of the FORWARD chain have nothing
> to do with rules; see FAQ 17.
I''ve also updated FAQ 17 and FAQ 2a to address a possible cause of
these
types of messages. See http://shorewall.net/FAQ.htm.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net

Shorewall users - Oct 2003 - local dns "53"

[Shorewall-users] local dns "53"

[Shorewall-users] local dns "53"

[Shorewall-users] local dns "53"