On 03/05/2007 01:05:25 PM, Peter N. M. Hansteen wrote:
hard to tell without taking a peek at your actual rule set, but could
it be that you forgot "keep state"
with: flags S/SA
in the pass rules which let your
name service queries through?
the omission of which is a common mistake.
Karl
Jacques Beigbeder <[EMAIL PROTECTED]> writes:
> But where is the trouble? Is there a better fix?
hard to tell without taking a peek at your actual rule set, but could
it be that you forgot "keep state" in the pass rules which let your
name service queries through?
--
Peter N. M. Hansteen, membe
Hello,
May be a newbie question...
Architecture:
Internet
PF firewall on FreeBSD 5.5
DNS server (bind 9)
I set up a standard set of rules.
DNS queries often work, 'pfctl -ss' displays:
self udp 192.134.0.49:53 <- 129.199.96.11:55186 MULTIPLE:MULTIPLE
