Red Hat Security - iptables

This is Interesting: Free IT Magazines  
Home > Archive > Red Hat Security > June 2004 > iptables





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author iptables
Paul Roddy

2004-06-17, 5:56 pm

I'm trying to add an entry to my /etc/sysconfig/iptables to allow dns in and
out and am not having much luck. this is what I have so far:

-A RH-Firewall-1-1INPUT -m state NEW -p udp --dport 53 -j ACCEPT



Alexander Dalloz

2004-06-17, 5:56 pm

On Thu, 17 Jun 2004 13:36:41 -0500 Paul Roddy wrote:

> I'm trying to add an entry to my /etc/sysconfig/iptables to allow dns in and
> out and am not having much luck. this is what I have so far:
>
> -A RH-Firewall-1-1INPUT -m state NEW -p udp --dport 53 -j ACCEPT

That rule is just for INPUT, it misses TCP protocol - DNS uses not only
UDP! -, it misses too ESTABLISHED and RELATED states.

Alexander


--
Alexander Dalloz | Enger, Germany
PGP key valid: made 13.07.1999
PGP fingerprint: 2307 88FD 2D41 038E 7416 14CD E197 6E88 ED69 5653

Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com