Date: Sun, 8 Dec 2019 12:11:25 -0500 From: <starikarp@dismail.de> To: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: ipfw for unbound Message-ID: <20191208121125.4ec7e9e8@dismail.de>
next in thread | raw e-mail | index | archive | help
Hi! I have unbound installed on the single, desktop computer with FreeBSD 12.1-RELEASE and settings for DNS over TLS which works. I am runing IPFW firewall and I had(have) in my rules for DNS: cmd 01250 allow udp from any to 84.242.218.68 853 out via $pif keep-state $cmd 01300 allow tcp from any to 84.242.218.68 853 out via $pif setup keep-state In unbound.conf I have 5 different forward-addresses. And in /etc/resolv.conf I have nameserver 127.0.0.1. I thought that $cmd 11027 allow udp from any to me dst-port 853 keep-state $cmd 11028 allow tcp from any to me dst-port 853 setup keep-state will works but it doesn't. Should I allow each address than, please? Thank you. --=20 =E2=80=9Cgood people do not need laws to tell them to act responsibly, while bad people will find a way around the laws=E2=80=9D=20 Plato
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20191208121125.4ec7e9e8>