[Shorewall-users] cant' ping the hostnmames from my firewall

Tom Eastep teastep@shorewall.net
Wed, 24 Apr 2002 19:08:13 -0700 (Pacific Daylight Time)

On Wed, 24 Apr 2002, aleksey zakharov wrote:

> Hello, i have successfully set up shore wall and ppp on my system (Red
> Hat 7.2). but i have a slight problem, while connected to the firewall I
> can't resolve the hostnmames or browse the Internet from it. I can
> however use the Internet from the local network or from the ppp VPN. the
> /etc/resolv.conf file is fine. is there a file somewhere where i specify
> the resolvers? thank you in advance.

You need to add the following to /etc/shorewall/rules:

ACCEPT	fw	net	udp	domain
ACCEPT	fw	net	tcp	domain

These two rules say:

	From the firewall to the internet, the firewall should accept UDP
        and TCP connections to port 53 (DNS).

Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net