[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

RE: Changing the security level configuration to allow port 53(DNS)



Ok. It's kinda big. You're right. It's not listening which seems to be
my problem. named is not listd in my services list for me to enable. The
server is a slave. It waits for the primary DNS to send it the data.

Brent.

Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address        
State      
tcp        0      0 127.0.0.1:32768         0.0.0.0:*              
LISTEN      
tcp        0      0 0.0.0.0:111             0.0.0.0:*              
LISTEN      
tcp        0      0 0.0.0.0:6000            0.0.0.0:*              
LISTEN      
tcp        0      0 0.0.0.0:80              0.0.0.0:*              
LISTEN      
tcp        0      0 0.0.0.0:22              0.0.0.0:*              
LISTEN      
tcp        0      0 127.0.0.1:631           0.0.0.0:*              
LISTEN      
tcp        0      0 0.0.0.0:25              0.0.0.0:*              
LISTEN      
tcp        0      0 0.0.0.0:443             0.0.0.0:*              
LISTEN      
tcp        0     48 161.31.108.55:22        161.31.208.11:2497     
ESTABLISHED 
tcp        0      0 127.0.0.1:34551         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34550         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34549         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34548         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34555         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34554         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34553         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34552         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34558         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34557         127.0.0.1:631          
TIME_WAIT   
tcp        0      0 127.0.0.1:34556         127.0.0.1:631          
TIME_WAIT   
udp        0      0 0.0.0.0:111             0.0.0.0:*                  
        
udp        0      0 0.0.0.0:631             0.0.0.0:*                  
        
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags       Type       State         I-Node Path
unix  2      [ ACC ]     STREAM     LISTENING     1506   /dev/gpmctl
unix  2      [ ACC ]     STREAM     LISTENING     1677  
/tmp/.font-unix/fs7100
unix  2      [ ACC ]     STREAM     LISTENING     1818  
/tmp/.X11-unix/X0
unix  2      [ ACC ]     STREAM     LISTENING     1964  
/tmp/ssh-XXLxg72B/agent.1379
unix  2      [ ACC ]     STREAM     LISTENING     2000  
/tmp/orbit-root/linc-563-0-4d2abfc231fd6
unix  2      [ ACC ]     STREAM     LISTENING     1808  
/tmp/.gdm_socket
unix  2      [ ACC ]     STREAM     LISTENING     2093  
/tmp/orbit-root/linc-5ad-0-7847276cf017c
unix  2      [ ACC ]     STREAM     LISTENING     2130  
/tmp/.fam_socket
unix  2      [ ACC ]     STREAM     LISTENING     2083  
/tmp/.ICE-unix/1379
unix  2      [ ACC ]     STREAM     LISTENING     2114  
/tmp/orbit-root/linc-5af-0-6022fc4b4959b
unix  2      [ ACC ]     STREAM     LISTENING     2197  
/tmp/orbit-root/linc-5bb-0-1bd796ef750da
unix  2      [ ACC ]     STREAM     LISTENING     2227  
/tmp/orbit-root/linc-5c3-0-567b52a93c265
unix  2      [ ACC ]     STREAM     LISTENING     2245  
/tmp/orbit-root/linc-5bf-0-567b52a96fede
unix  2      [ ACC ]     STREAM     LISTENING     2268  
/tmp/orbit-root/linc-5c1-0-567b52a9e2dbe
unix  2      [ ACC ]     STREAM     LISTENING     2287  
/tmp/orbit-root/linc-5c6-0-681f477923b2c
unix  2      [ ACC ]     STREAM     LISTENING     2409  
/tmp/orbit-root/linc-5d1-0-3146e263850a0
unix  2      [ ACC ]     STREAM     LISTENING     2443  
/tmp/orbit-root/linc-5ca-0-43b77f876af09
unix  2      [ ACC ]     STREAM     LISTENING     2761  
/tmp/orbit-root/linc-601-0-4492cff15bf92
unix  11     [ ]         DGRAM                    1132   /dev/log
unix  2      [ ACC ]     STREAM     LISTENING     1438  
public/cleanup
unix  2      [ ACC ]     STREAM     LISTENING     1457   public/flush
unix  2      [ ACC ]     STREAM     LISTENING     1465   public/showq
unix  2      [ ACC ]     STREAM     LISTENING     1445  
private/rewrite
unix  2      [ ACC ]     STREAM     LISTENING     1992  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  2      [ ACC ]     STREAM     LISTENING     1449  
private/bounce
unix  2      [ ACC ]     STREAM     LISTENING     1453   private/defer
unix  2      [ ACC ]     STREAM     LISTENING     1461   private/smtp
unix  2      [ ACC ]     STREAM     LISTENING     1469   private/error
unix  2      [ ACC ]     STREAM     LISTENING     1473   private/local
unix  2      [ ACC ]     STREAM     LISTENING     1477  
private/virtual
unix  2      [ ACC ]     STREAM     LISTENING     1481   private/lmtp
unix  2      [ ACC ]     STREAM     LISTENING     1485   private/cyrus
unix  2      [ ACC ]     STREAM     LISTENING     1489   private/uucp
unix  2      [ ACC ]     STREAM     LISTENING     1493  
private/ifmail
unix  2      [ ACC ]     STREAM     LISTENING     1497   private/bsmtp
unix  2      [ ]         DGRAM                    8741   
unix  3      [ ]         STREAM     CONNECTED     2764  
/tmp/orbit-root/linc-601-0-4492cff15bf92
unix  3      [ ]         STREAM     CONNECTED     2763   
unix  3      [ ]         STREAM     CONNECTED     2760  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     2759   
unix  3      [ ]         STREAM     CONNECTED     2753  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2752   
unix  2      [ ]         DGRAM                    2750   
unix  3      [ ]         STREAM     CONNECTED     2745  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2744   
unix  3      [ ]         STREAM     CONNECTED     2446  
/tmp/orbit-root/linc-5ca-0-43b77f876af09
unix  3      [ ]         STREAM     CONNECTED     2445   
unix  3      [ ]         STREAM     CONNECTED     2442  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     2441   
unix  3      [ ]         STREAM     CONNECTED     2436  
/tmp/.ICE-unix/1379
unix  3      [ ]         STREAM     CONNECTED     2435   
unix  3      [ ]         STREAM     CONNECTED     2425  
/tmp/orbit-root/linc-5bf-0-567b52a96fede
unix  3      [ ]         STREAM     CONNECTED     2424   
unix  3      [ ]         STREAM     CONNECTED     2423  
/tmp/orbit-root/linc-5d1-0-3146e263850a0
unix  3      [ ]         STREAM     CONNECTED     2422   
unix  3      [ ]         STREAM     CONNECTED     2417  
/tmp/orbit-root/linc-5d1-0-3146e263850a0
unix  3      [ ]         STREAM     CONNECTED     2416   
unix  3      [ ]         STREAM     CONNECTED     2415  
/tmp/orbit-root/linc-5ad-0-7847276cf017c
unix  3      [ ]         STREAM     CONNECTED     2414   
unix  3      [ ]         STREAM     CONNECTED     2412  
/tmp/orbit-root/linc-5d1-0-3146e263850a0
unix  3      [ ]         STREAM     CONNECTED     2411   
unix  3      [ ]         STREAM     CONNECTED     2408  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     2407   
unix  3      [ ]         STREAM     CONNECTED     2401  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2400   
unix  3      [ ]         STREAM     CONNECTED     2374  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2373   
unix  3      [ ]         STREAM     CONNECTED     2361  
/tmp/.famkBwzSd
unix  3      [ ]         STREAM     CONNECTED     2360   
unix  3      [ ]         STREAM     CONNECTED     2327  
/tmp/orbit-root/linc-5c1-0-567b52a9e2dbe
unix  3      [ ]         STREAM     CONNECTED     2326   
unix  3      [ ]         STREAM     CONNECTED     2325  
/tmp/orbit-root/linc-5ad-0-7847276cf017c
unix  3      [ ]         STREAM     CONNECTED     2324   
unix  3      [ ]         STREAM     CONNECTED     2330  
/tmp/.ICE-unix/1379
unix  3      [ ]         STREAM     CONNECTED     2316   
unix  3      [ ]         STREAM     CONNECTED     2315  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2314   
unix  3      [ ]         STREAM     CONNECTED     2302  
/tmp/.famEoVEjr
unix  3      [ ]         STREAM     CONNECTED     2301   
unix  3      [ ]         STREAM     CONNECTED     2290  
/tmp/orbit-root/linc-5c6-0-681f477923b2c
unix  3      [ ]         STREAM     CONNECTED     2289   
unix  3      [ ]         STREAM     CONNECTED     2286  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     2285   
unix  3      [ ]         STREAM     CONNECTED     2283  
/tmp/.ICE-unix/1379
unix  3      [ ]         STREAM     CONNECTED     2282   
unix  3      [ ]         STREAM     CONNECTED     2276  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2275   
unix  3      [ ]         STREAM     CONNECTED     2271  
/tmp/orbit-root/linc-5c1-0-567b52a9e2dbe
unix  3      [ ]         STREAM     CONNECTED     2270   
unix  3      [ ]         STREAM     CONNECTED     2267  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     2266   
unix  3      [ ]         STREAM     CONNECTED     2264  
/tmp/.ICE-unix/1379
unix  3      [ ]         STREAM     CONNECTED     2263   
unix  3      [ ]         STREAM     CONNECTED     2257  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2256   
unix  3      [ ]         STREAM     CONNECTED     2254  
/tmp/orbit-root/linc-5bf-0-567b52a96fede
unix  3      [ ]         STREAM     CONNECTED     2253   
unix  3      [ ]         STREAM     CONNECTED     2252  
/tmp/orbit-root/linc-5ad-0-7847276cf017c
unix  3      [ ]         STREAM     CONNECTED     2251   
unix  3      [ ]         STREAM     CONNECTED     2248  
/tmp/orbit-root/linc-5bf-0-567b52a96fede
unix  3      [ ]         STREAM     CONNECTED     2247   
unix  3      [ ]         STREAM     CONNECTED     2244  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     2243   
unix  3      [ ]         STREAM     CONNECTED     2240  
/tmp/.ICE-unix/1379
unix  3      [ ]         STREAM     CONNECTED     2239   
unix  3      [ ]         STREAM     CONNECTED     2233  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2232   
unix  3      [ ]         STREAM     CONNECTED     2230  
/tmp/orbit-root/linc-5c3-0-567b52a93c265
unix  3      [ ]         STREAM     CONNECTED     2229   
unix  3      [ ]         STREAM     CONNECTED     2226  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     2225   
unix  3      [ ]         STREAM     CONNECTED     2223  
/tmp/.ICE-unix/1379
unix  3      [ ]         STREAM     CONNECTED     2222   
unix  3      [ ]         STREAM     CONNECTED     2216  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2215   
unix  3      [ ]         STREAM     CONNECTED     2206  
/tmp/.ICE-unix/1379
unix  3      [ ]         STREAM     CONNECTED     2205   
unix  3      [ ]         STREAM     CONNECTED     2202  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2201   
unix  3      [ ]         STREAM     CONNECTED     2200  
/tmp/orbit-root/linc-5bb-0-1bd796ef750da
unix  3      [ ]         STREAM     CONNECTED     2199   
unix  3      [ ]         STREAM     CONNECTED     2196  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     2195   
unix  3      [ ]         STREAM     CONNECTED     2166  
/tmp/orbit-root/linc-5af-0-6022fc4b4959b
unix  3      [ ]         STREAM     CONNECTED     2165   
unix  3      [ ]         STREAM     CONNECTED     2158  
/tmp/orbit-root/linc-5af-0-6022fc4b4959b
unix  3      [ ]         STREAM     CONNECTED     2157   
unix  3      [ ]         STREAM     CONNECTED     2156  
/tmp/orbit-root/linc-5ad-0-7847276cf017c
unix  3      [ ]         STREAM     CONNECTED     2155   
unix  3      [ ]         STREAM     CONNECTED     2136  
/tmp/.famatZvVF
unix  3      [ ]         STREAM     CONNECTED     2135   
unix  3      [ ]         STREAM     CONNECTED     2117  
/tmp/orbit-root/linc-5af-0-6022fc4b4959b
unix  3      [ ]         STREAM     CONNECTED     2116   
unix  3      [ ]         STREAM     CONNECTED     2113  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     2112   
unix  3      [ ]         STREAM     CONNECTED     2106  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     2105   
unix  3      [ ]         STREAM     CONNECTED     2100  
/tmp/orbit-root/linc-563-0-4d2abfc231fd6
unix  3      [ ]         STREAM     CONNECTED     2099   
unix  3      [ ]         STREAM     CONNECTED     2098  
/tmp/orbit-root/linc-5ad-0-7847276cf017c
unix  3      [ ]         STREAM     CONNECTED     2097   
unix  3      [ ]         STREAM     CONNECTED     2082  
/tmp/orbit-root/linc-563-0-4d2abfc231fd6
unix  3      [ ]         STREAM     CONNECTED     2081   
unix  3      [ ]         STREAM     CONNECTED     2080  
/tmp/orbit-root/linc-5ab-0-7e3bbfb23141
unix  3      [ ]         STREAM     CONNECTED     1999   
unix  2      [ ]         DGRAM                    1991   
unix  3      [ ]         STREAM     CONNECTED     1974  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     1973   
unix  3      [ ]         STREAM     CONNECTED     1828  
/tmp/.font-unix/fs7100
unix  3      [ ]         STREAM     CONNECTED     1827   
unix  4      [ ]         STREAM     CONNECTED     1830  
/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     1821   
unix  2      [ ]         DGRAM                    1729   
unix  2      [ ]         DGRAM                    1557   
unix  2      [ ]         DGRAM                    1516   
unix  3      [ ]         STREAM     CONNECTED     1500   
unix  3      [ ]         STREAM     CONNECTED     1499   
unix  3      [ ]         STREAM     CONNECTED     1496   
unix  3      [ ]         STREAM     CONNECTED     1495   
unix  3      [ ]         STREAM     CONNECTED     1492   
unix  3      [ ]         STREAM     CONNECTED     1491   
unix  3      [ ]         STREAM     CONNECTED     1488   
unix  3      [ ]         STREAM     CONNECTED     1487   
unix  3      [ ]         STREAM     CONNECTED     1484   
unix  3      [ ]         STREAM     CONNECTED     1483   
unix  3      [ ]         STREAM     CONNECTED     1480   
unix  3      [ ]         STREAM     CONNECTED     1479   
unix  3      [ ]         STREAM     CONNECTED     1476   
unix  3      [ ]         STREAM     CONNECTED     1475   
unix  3      [ ]         STREAM     CONNECTED     1472   
unix  3      [ ]         STREAM     CONNECTED     1471   
unix  3      [ ]         STREAM     CONNECTED     1468   
unix  3      [ ]         STREAM     CONNECTED     1467   
unix  3      [ ]         STREAM     CONNECTED     1464   
unix  3      [ ]         STREAM     CONNECTED     1463   
unix  3      [ ]         STREAM     CONNECTED     1460   
unix  3      [ ]         STREAM     CONNECTED     1459   
unix  3      [ ]         STREAM     CONNECTED     1456   
unix  3      [ ]         STREAM     CONNECTED     1455   
unix  3      [ ]         STREAM     CONNECTED     1452   
unix  3      [ ]         STREAM     CONNECTED     1451   
unix  3      [ ]         STREAM     CONNECTED     1448   
unix  3      [ ]         STREAM     CONNECTED     1447   
unix  3      [ ]         STREAM     CONNECTED     1444   
unix  3      [ ]         STREAM     CONNECTED     1443   
unix  3      [ ]         STREAM     CONNECTED     1441   
unix  3      [ ]         STREAM     CONNECTED     1440   
unix  3      [ ]         STREAM     CONNECTED     1437   
unix  3      [ ]         STREAM     CONNECTED     1436   
unix  3      [ ]         STREAM     CONNECTED     1431   
unix  3      [ ]         STREAM     CONNECTED     1430   
unix  2      [ ]         DGRAM                    1413   
unix  2      [ ]         DGRAM                    1320   
unix  2      [ ]         DGRAM                    1140   






>>> jasons NJAQUARIUM ORG 7/16/2003 10:18:35 AM >>>
I still didn't see it listening on any port. Show me the full netstat
-an

-----Original Message-----
From: Brent Herring [mailto:BrentH uca edu] 
Sent: Wednesday, July 16, 2003 11:13 AM
To: redhat-list redhat com 
Subject: RE: Changing the security level configuration to allow port
53
(DNS)


I forgot to mention that I'm using TinyDNS. All appears to be running
properly, I just can't get to it from another machine.

Brent.

>>> jasons NJAQUARIUM ORG 7/16/2003 9:47:27 AM >>>
did you start the named service?
ps ax|grep named
netstat -ap|grep named
is you named server configured to be a zone slave?
 
-----Original Message-----
From: Brent Herring [mailto:BrentH uca edu] 
Sent: Wednesday, July 16, 2003 10:21 AM
To: redhat-list redhat com 
Subject: Changing the security level configuration to allow port 53
(DNS)


I need assistance in allowing my Redhat 9.0 server to allow DNS
traffic
on
port 53.
 
I have RedHat 9.0 installed and everything is fine except I can't seem
to
change the security level configuration to allow traffic on port 53.
Other
services (httpd(80), ssh(22), etc.,) are working as expected.

I wish to use the server as a secondary DNS server here. I believe I
have
the iptables rules in place, but port 53 is not available. I tried
editing
/etc/sysconfig/redhat-config-securitylevel and adding port 53
manually,
but
that had no effect. 
 
Please advise if possible.
 
iptables -L -n shows (in part)

ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 flags:0x16/0x02 
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 flags:0x16/0x02 
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 flags:0x16/0x02 
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 flags:0x16/0x02 
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:0:1023 flags:0x16/0x02
reject-with icmp-port-unreachable 
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2049 flags:0x16/0x02
reject-with
icmp-port-unreachable 
REJECT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:0:1023 reject-with
icmp-port-unreachable 
REJECT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:2049 reject-with
icmp-port-unreachable 
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:6000:6009 flags:0x16/0x02
reject-with icmp-port-unreachable 
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:7100 flags:0x16/0x02
reject-with
icmp-port-unreachable

But, netstat -ln shows only

Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State 
tcp 0 0 127.0.0.1:32768 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:6000 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 
tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 


-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request redhat com?subject=unsubscribe 
https://www.redhat.com/mailman/listinfo/redhat-list 


-- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request redhat com?subject=unsubscribe 
https://www.redhat.com/mailman/listinfo/redhat-list




[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]