RE: Changing the security level configuration to allow port 53(DNS)

Wed, 16 Jul 2003 08:18:25 -0700 

I forgot to mention that I'm using TinyDNS. All appears to be running
properly, I just can't get to it from another machine.

Brent.

>>> [EMAIL PROTECTED] 7/16/2003 9:47:27 AM >>>
did you start the named service?
ps ax|grep named
netstat -ap|grep named
is you named server configured to be a zone slave?
 
-----Original Message-----
From: Brent Herring [mailto:[EMAIL PROTECTED] 
Sent: Wednesday, July 16, 2003 10:21 AM
To: [EMAIL PROTECTED] 
Subject: Changing the security level configuration to allow port 53
(DNS)


I need assistance in allowing my Redhat 9.0 server to allow DNS traffic
on
port 53.
 
I have RedHat 9.0 installed and everything is fine except I can't seem
to
change the security level configuration to allow traffic on port 53.
Other
services (httpd(80), ssh(22), etc.,) are working as expected.

I wish to use the server as a secondary DNS server here. I believe I
have
the iptables rules in place, but port 53 is not available. I tried
editing
/etc/sysconfig/redhat-config-securitylevel and adding port 53 manually,
but
that had no effect. 
 
Please advise if possible.
 
iptables -L -n shows (in part)

ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 flags:0x16/0x02 
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 flags:0x16/0x02 
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 flags:0x16/0x02 
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 flags:0x16/0x02 
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:0:1023 flags:0x16/0x02
reject-with icmp-port-unreachable 
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:2049 flags:0x16/0x02
reject-with
icmp-port-unreachable 
REJECT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:0:1023 reject-with
icmp-port-unreachable 
REJECT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:2049 reject-with
icmp-port-unreachable 
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpts:6000:6009 flags:0x16/0x02
reject-with icmp-port-unreachable 
REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:7100 flags:0x16/0x02
reject-with
icmp-port-unreachable

But, netstat -ln shows only

Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State 
tcp 0 0 127.0.0.1:32768 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:6000 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 
tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 


-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://www.redhat.com/mailman/listinfo/redhat-list

Reply via email to