[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Opening port 53

From: Roger Harrell <roger audiblefaith com>
To: redhat-install-list redhat com
Subject: Re: Opening port 53
Date: Sat, 24 Jan 2004 10:35:02 -0800

> So I removed these rules and tried: iptables -I INPUT 1 -p udp -s
> 0.0.0.0/0 -d 0.0.0.0/0 --dport 53 -j ACCEPT
>
> Why?  Do you want to prevent outside DNS resolution for your system?
> You would only open destination port 53 if YOU are a DNS server.  You
>  must open SOURCE port 53 to allow other machines to do DNS for you.
> The original rules do that for the two servers listed.

Yes, I am a DNS server, and do not want incoming queries to reroute.

>
> Which gives:
>
> iptables v1.2.7a: Couldn't load target
> `accept':/lib/iptables/libipt_accept.so: cannot open shared object
> file: No such file or directory
>
> I don't know about that.  I think you've mistyped it.  ACCEPT is
> built into iptables.  Are you sure you didn't type "-j accept"?   It
> must be capitalized.

*blush*. That must have been what I did. The commands work. The DNS server is working properly now! Thanks sooo much for your help.

--
Roger Harrell

Follow-Ups:
- Re: Opening port 53
  - From: Rick Stevens

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]