[lug] logger entry for punching hole for nameserver
Nate Duehr
nate at natetech.com
Fri Apr 27 01:01:52 MDT 2001
On Thu, Apr 26, 2001 at 09:42:29AM -0600, John Hernandez wrote:
> I *think* I can explain this. If it's Redhat 7.1 and you specified a firewall at install time, it enables the rules found in /etc/sysconfig/ipchains. A comment in that file says:
>
> # Note: ifup-post will punch the current nameservers through the
> # firewall; such entries will *not* be listed here.
>
> I interpret this to mean that it parses your /etc/resolv.conf and adds rules to allow UDP replies from port 53 on those servers.
>
> You can run 'ipchains -L -n' as root to see those rules.
>
> -John
Cool. Very thoughtful of them.
--
Nate Duehr <nate at natetech.com>
GPG Key fingerprint = DCAF 2B9D CC9B 96FA 7A6D AAF4 2D61 77C5 7ECE C1D2
Public Key available upon request, or at wwwkeys.pgp.net and others.
More information about the LUG
mailing list