|
Home > Archive > Red Hat Networking > January 2004 > RH9 and named
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
|
| Hi,
I am trying to set up an internal DNS server. I have gotten named
configured so it works great on the server, but I can't get it to accept
remote queries. I get a "No response from server" error message when I
run nslookup, both from windows and other linux machines.
I have openned up tcp port 53 in /etc/iptables
(-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 53 --syn -j ACCEPT)
netstat shows that it is listening on the external interface.
Here's what tcpdump says is happening on port 53 (my domain name
replaced my 'mydomain'. Earthlink's DNS servers are my upstream DNS
servers):
Remote query:
17:13:45.585152 172.16.0.6.2628 > host.mydomain.com.domain: 1+ PTR?
2.0.16.172.in-addr.arpa. (41)
17:13:45.591355 172.16.0.6.2629 > host.mydomain.com.domain: 2+ A?
google.com.mydomain.com. (41)
Local query:
17:14:00.232177 host.mydomain.com.domain > rns2.earthlink.net.domain:
57081+ A? google.com. (28) (DF)
17:14:00.294564 rns2.earthlink.net.domain > host.mydomain.com.domain:
57081 2/4/4 A www.google.com, (196) (DF)
17:14:00.295938 host.mydomain.com.domain > rns2.earthlink.net.domain:
21502+ PTR? 100.33.239.216.in-addr.arpa. (45) (DF)
17:14:00.359141 rns2.earthlink.net.domain > host.mydomain.com.domain:
21502 1/4/4 (209) (DF)
I'm not sure what to make of this, but maybe someone else has this same
problem?
Thanks,
Kris
| |
| Paulo-K 2004-01-23, 7:33 pm |
| -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Kris wrote:quote:
> Hi,
>
> I am trying to set up an internal DNS server. I have gotten named
> configured so it works great on the server, but I can't get it to accept
> remote queries. I get a "No response from server" error message when I
> run nslookup, both from windows and other linux machines.
>
> I have openned up tcp port 53 in /etc/iptables
> (-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 53 --syn -j ACCEPT)
DNS works on UDP protocol at port 53, only if it fails it will try to
use TCP.
You should see something like this on your /etc/sysconfig/iptables :
(-A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 53 -j ACCEPT)
I hope this helps.
- --
Paulo-K
coruus/garbadge4spam/at/portugalmail.pt
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+7WdxPsT6xx3AJwMRAsdmAJ9/4Kn3GeqhAHG43V2pCmAChrdzgwCfYnBr
k06RFiDY1Qp76DADRYtneNU=
=Pq2M
-----END PGP SIGNATURE-----
| |
|
| Paulo-K wrote:quote:
> DNS works on UDP protocol at port 53, only if it fails it will try to
> use TCP.
>
> You should see something like this on your /etc/sysconfig/iptables :
> (-A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 53 -j ACCEPT)
>
> I hope this helps.
It works like a charm now. Thanks! :-)
|
|
|
|
|