[Shorewall-newbies] No access from loc to net

Tom Eastep teastep at shorewall.net
Sat Mar 13 09:08:58 PST 2004


On Saturday 13 March 2004 02:02 pm, motiv8d wrote:

> Mar 13 22:48:50 all2all:REJECT:IN=eth1 OUT= SRC=10.10.10.100
> DST=10.10.10.254 LEN=62 TOS=0x00 PREC=0x00 TTL=128 ID=43327 PROTO=UDP
> SPT=1027 DPT=53 LEN=42 Mar 13 22:48:53 all2all:REJECT:IN=eth1 OUT=
> SRC=10.10.10.100 DST=10.10.10.254 LEN=72 TOS=0x00 PREC=0x00 TTL=128
> ID=43328 PROTO=UDP SPT=1027 DPT=53 LEN=52

This is likely to be related to your problem. You appear to be running a DNS 
server on your firewall (or at least 10.10.10.100 thinks you are) but you 
have not enabled DNS from the local zone to the firewall.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep at shorewall.net




More information about the Shorewall-newbies mailing list