On Tue, Mar 13, 2007 at 10:28:04AM +0200, Micha Feigin wrote: > On Mon, 12 Mar 2007 18:59:29 -0400 > "Roberto C. Sanchez" <roberto@connexer.com> wrote: > > > On Mon, Mar 12, 2007 at 09:00:06AM +0200, Micha Feigin wrote: > > > > > > That helped a bit. It appears that shorewall requires Ipv4 connection > > > tracking enabled. Now shorewall comes up and seems to work except that dns > > > requests from the firewall fail when it is enabled. (I can ping out by > > > address but not by name) > > > > > > > What are the contents of /etc/shorewall/policy? > > > > $FW all ACCEPT - > net $FW DROP info > all all DROP info > > I then add specific incoming ports in /etc/shorewall/rules > And when you say "DNS requests from the firewall" you mean for actual applications running on the firewall box itself? Not something else behind the firewall? Regards, -Roberto -- Roberto C. Sanchez http://people.connexer.com/~roberto http://www.connexer.com
Attachment:
signature.asc
Description: Digital signature