Re: urgent - netfilter rejecting 60% of DNS requests!

To: debian-firewall@lists.debian.org
Subject: Re: urgent - netfilter rejecting 60% of DNS requests!
From: HdV@DTO.TUDelft.NL
Date: Wed, 1 Oct 2003 23:34:15 +0200 (MEST)
Message-id: <[🔎] Pine.GSO.4.58.0310012332130.11683@sanders.rc.tudelft.nl>
In-reply-to: <[🔎] 0EF8394892B74144ACF999556D1FD6BB7DE392@dexter.decidir.net>
References: <[🔎] 0EF8394892B74144ACF999556D1FD6BB7DE392@dexter.decidir.net>

On Wed, 1 Oct 2003, Martin Ferrari - Decidir IT wrote:

> Hi, I don't know what's happening, but I discovered that my firewall is
> currently rejecting with port unreachable about 60% of the DNS queries I
> receive, but this is not happening with the other kind of traffic I manage
> (http and smtp).

Hi Martin,

Contrary to what a lot of people will tell you DNS does use TCP for
things other than zone transfers. Did you allow for that in your
ruleset?

Grx HdV

Reply to:

Follow-Ups:
- Re: urgent - netfilter rejecting 60% of DNS requests!
  - From: Bernd Eckenfels <lists@lina.inka.de>

References:
- urgent - netfilter rejecting 60% of DNS requests!
  - From: Martin Ferrari - Decidir IT <mferrari@decidir.net>

Prev by Date: Re: urgent - netfilter rejecting 60% of DNS requests!
Next by Date: Re: urgent - netfilter rejecting 60% of DNS requests!
Previous by thread: Re: urgent - netfilter rejecting 60% of DNS requests!
Next by thread: Re: urgent - netfilter rejecting 60% of DNS requests!
Index(es):
- Date
- Thread