03-03-2005
LINUX 9 IPTABLES and DNS
I have installed a linux 9 router/firewall and have issues with outside DNS queries making it in. here are my IPTABLE rules, can anyone make some suggestions?
ETH1 is my outside facing Interface, ETH0 is my inside facing interface.
Accept If input interface is not eth1
Accept If protocol is TCP and TCP flags ACK (of ACK) are set
Accept If protocol is UDP and input interface is eth1 and destination port is 1024:65535 and source port is 53
Accept If state of connection is ESTABLISHED
Accept If state of connection is RELATED
Accept If protocol is TCP and destination is 216.58.39.241 and input interface is eth1 and destination port is 110
Accept If protocol is TCP and destination is 216.58.39.241 and input interface is eth1 and destination port is 25
Accept If protocol is TCP and input interface is eth1 and source and destination ports are 6346
Accept If protocol is ICMP and ICMP type is source-quench
Accept If protocol is ICMP and ICMP type is time-exceeded
Accept If protocol is ICMP and ICMP type is parameter-problem
Accept If protocol is TCP and destination port is ssh
Accept If protocol is TCP and destination port is auth
10 More Discussions You Might Find Interesting
1. IP Networking
I really need help here.
I am trying to sort out dns on a linux machine, but no matter what i do it just doesnt seem to work. I am sorting out dns for a domain, but even after putting the entries in /etc/named.boot for the localhost nslookup to work, referencing the correct file in /var/named -... (4 Replies)
Discussion started by: alwayslearningunix
4 Replies
2. UNIX for Dummies Questions & Answers
I'm very new to all of this, so I apologize in advance if my post comes off incoherent, or terms aren't used correctly :rolleyes:
Using Fedora Core 2, I set up am internal DNS name server. After setting up the named.conf, and the localhost files I was able to correctly resolve my host name... (3 Replies)
Discussion started by: skeet23
3 Replies
3. Linux
I have installed a linux 9 router/firewall and have issues with outside DNS queries making it in. here are my IPTABLE rules, can anyone make some suggestions?
ETH1 is my outside facing Interface, ETH0 is my inside facing interface.
Accept If input interface is not eth1
Accept If protocol... (6 Replies)
Discussion started by: frankkahle
6 Replies
4. UNIX for Advanced & Expert Users
I have set up a linux (red hat 9) box as my main internet router. I am also running a DNS server on it. What are the rules i have to implement to allow DNS queries through the firewall from outside so that the outside world can see my domains? (1 Reply)
Discussion started by: frankkahle
1 Replies
5. UNIX for Advanced & Expert Users
I'd like to get some opnions on choosing DNS server:
Windows DNS vs Linux BIND comparrsion:
1) managment, easy of use
2) Security
3) features
4) peformance
5) ??
I personally prefer Windows DNS server for management, it supports GUI and command line. But I am not sure about security... (2 Replies)
Discussion started by: honglus
2 Replies
6. Red Hat
Dear members,
I am trying to set up a simple DNS but the problem is that when I ping the name of the IP address in the Reverse file, it does not recognise it. My code are as follows:
Note that my IP address is 172.22.45.237.
In my /etc/named.conf file, I have added the following lines
... (10 Replies)
Discussion started by: shakshakshuk
10 Replies
7. Red Hat
Hi , I have configured OEL 5.3 server on VMware server,installation went fine, however when i am checking host using configured /etc/hosts i am getting following error let me know where it went wrong .
I had disabled firewall options and SELLinux.
root@oen11g ~]# host oen11g.grid.com
;;... (2 Replies)
Discussion started by: autoconfig
2 Replies
8. IP Networking
Can someone help with a detail step-by-step oh how to configure DNS server on Linux Server.
-
I need to have 3 IP addresses map to a single hostname.
for clients
I'm a Linux rookie.
Thanks
Oscar (1 Reply)
Discussion started by: FrankOscar
1 Replies
9. Red Hat
Hi,
I have a newly built RHEL5 OS that is unable to talk to the DNS server. I am unable to telnet resolv.conf entry over port 53 but apparently this port has been opened.
# telnet 209.212.96.1 53
and.....
# dig www.google.com
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>>... (9 Replies)
Discussion started by: Duffs22
9 Replies
10. Red Hat
I built the new linux server. And i want to add it to DNS. Please help me how to do this !!!
thanks in advance ! :) (6 Replies)
Discussion started by: abhay1983
6 Replies
LEARN ABOUT CENTOS
ipa-dns-install
ipa-dns-install(1) IPA Manual Pages ipa-dns-install(1)
NAME
ipa-dns-install - Add DNS as a service to an IPA server
SYNOPSIS
ipa-dns-install [OPTION]...
DESCRIPTION
Adds DNS as an IPA-managed service. This requires that the IPA server is already installed and configured.
OPTIONS
-p DM_PASSWORD, --ds-password=DM_PASSWORD
The password to be used by the Directory Server for the Directory Manager user
-d, --debug
Enable debug logging when more verbose output is needed
--ip-address=IP_ADDRESS
The IP address of the IPA server. If not provided then this is determined based on the hostname of the server.
--forwarder=FORWARDER
A forwarder is a DNS server where queries for a specific non-resolvable address can be directed. To define multiple forwarders use
multiple instances of --forwarder
--no-forwarders
Do not add any DNS forwarders, send non-resolvable addresses to the DNS root servers.
--reverse-zone=REVERSE_ZONE
The reverse DNS zone to use
--no-reverse
Do not create new reverse DNS zone. If used on a replica and a reverse DNS zone already exists for the subnet, it will be used.
--zonemgr
The e-mail address of the DNS zone manager. Defaults to hostmaster@DOMAIN
-U, --unattended
An unattended installation that will never prompt for user input
EXIT STATUS
0 if the installation was successful
1 if an error occurred
IPA
Jun 28, 2012 ipa-dns-install(1)