DNS thru firewall
I have this in my fw roules to allow acces to a nameserver inside my
net (it will be moved to a DMZ later).
iptables -A FORWARD $v -i $INTER -o $INTRA -p udp --destination-port domain -d hygglo2.gdpc.se -j ACCEPT
(all the used domainame is specifide in /etc/hosts so the fw can go
up before the net).
It works as far as I can look up names from remote sites. But zone
transfere dont seam to work and the dns server crached mysteriusly
last night so something migt anoy it :-/
Is there any more ports that needs to be open for a full working dns
server? Is ther some kind of cookbook for what ports different
I have got prety far by loking into /etc/services and guessing ;-)
but it don't feel all that secure :-/