From owner-freebsd-security@FreeBSD.ORG Fri Jan 23 01:52:19 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E3EEE16A4CE for ; Fri, 23 Jan 2004 01:52:19 -0800 (PST) Received: from mx1.webspacesolutions.com (ns1.webspacesolutions.com [216.74.11.68]) by mx1.FreeBSD.org (Postfix) with SMTP id 6A28A43D3F for ; Fri, 23 Jan 2004 01:52:18 -0800 (PST) (envelope-from nick@webspacesolutions.com) Received: (qmail 10687 invoked by uid 507); 23 Jan 2004 09:37:19 -0000 Received: from nick@webspacesolutions.com by ns1.webspacesolutions.com by uid 504 with qmail-scanner-1.20rc1 (clamuko: 0.65. spamassassin: 2.55. Clear:RC:1:. Processed in 0.038144 secs); 23 Jan 2004 09:37:19 -0000 Received: from 24-205-247-185.ata-cres.charterpipeline.net (HELO beastie) (24.205.247.185) by mx1.webspacesolutions.com with SMTP; 23 Jan 2004 09:37:19 -0000 From: "Nick Twaddell" To: "'Gogh, Ruben van'" , Date: Fri, 23 Jan 2004 01:52:44 -0800 Organization: Web Space Solutions MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.5510 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 In-Reply-To: <0FDD52D38220D611B7CC0004763B37448F0156@HNTS-04> Thread-Index: AcPhlCgPWODzik3zSZWQ3Hdf/y/brAAAl6gQ X-Qmail-Scanner-Message-ID: <107485063963610678@ns1.webspacesolutions.com> Message-Id: <20040123095218.6A28A43D3F@mx1.FreeBSD.org> Subject: RE: ipfw + named problem X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 Jan 2004 09:52:20 -0000 :P I got it fixed, I had a little typos in my rules. It's late! Nick -----Original Message----- From: Gogh, Ruben van [mailto:R.v.Gogh@kappe-int.com] Sent: Friday, January 23, 2004 1:49 AM To: 'Nick Twaddell' Cc: 'security@freebsd.org' Subject: RE: ipfw + named problem Are you sure you have a hints file for bind ? ;-) Regards, Ruben van Gogh -----Oorspronkelijk bericht----- Van: Nick Twaddell [mailto:nick@webspacesolutions.com] Verzonden: vrijdag 23 januari 2004 10:47 Aan: security@freebsd.org Onderwerp: ipfw + named problem Ok, I am really stumped on this one. I setup ipfw with all my rules. Everything works great except for dns. If I do nslookup I get -su-2.05b# nslookup yahoo.com Server: localhost.webspacesolutions.com Address: 127.0.0.1 *** localhost.webspacesolutions.com can't find yahoo.com: Non-existent host/domain This is what I have in my ipfw.rules add 00310 allow tcp from any to any 53 out via de0 setup keep-state add 00311 allow udp from any to any 53 out via de0 keep-state What am I missing?? Thanks Nick _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" ******************************************** The information in this e-mail is personal and may contain confidential and/or priveliged material. The contents may not be disclosed or used by anyone other than the addressee. If you are not the intended recipient, any use, disclosure, copying, distribution or action taken on it is prohibited. If you have received this communication in error please notify us by e-mail and then delete the e-mail and all attachments. ********************************************