Solved

firewall (iptables) problem

Posted on 2001-06-19
4
182 Views
Last Modified: 2013-11-16
i have set up the iptables firewall in our linux machine and configured it to accept certain packets including domain, since the machine is a dns server. however, with the current config, we can't connect to our machine using the name instead but we can using the ip address. what other port should i open to be able to connect using the domain name?

thanks.
0
Comment
Question by:wsanchez
  • 2
4 Comments
 
LVL 11

Expert Comment

by:geoffryn
Comment Utility
Can you ping it by name? or only by IP address?  It sounds like you have DNS issue.  I suspect that your iptable is not allowing DNS requests.
0
 

Author Comment

by:wsanchez
Comment Utility
i can only ping it by IP address. i have already configured the firewall to also accept packets on the domain port but i don't know why i still can't ping by name.
0
 
LVL 11

Expert Comment

by:geoffryn
Comment Utility
It is definiitely a DNS issue.  Can you do an NSLOOKUP on the server?
0
 
LVL 5

Accepted Solution

by:
Droby10 earned 50 total points
Comment Utility
did you permit udp, tcp, ip, both udp and tcp, or all for port 53...?

the minimum requirement would be udp and ip...tcp enabled would allow zone transfers as well.
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

If you get continual lockouts after changing your Active Directory password, there are several possible reasons.  Two of the most common are using other devices to access your email and stored passwords in the credential manager of windows.
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now