David Douthitt wrote:
>
> I've been working on the firewall again... it seems that most of the
> headaches are coming from DNS. I have to allow:
>
> * DNS lookups:
>1a. from the firewall to an external server (TCP)
>1b. from the firewall to an external server (UDP)
>2a. from the ins
I've been working on the firewall again... it seems that most of the
headaches are coming from DNS. I have to allow:
* DNS lookups:
1a. from the firewall to an external server (TCP)
1b. from the firewall to an external server (UDP)
2a. from the inside net to an external server (TCP)
