On 1/12/2014 6:10 AM, [email protected] wrote: > On Sat, 11 Jan 2014, Tom Eastep wrote: > >>> >>> Thanks for your hints, but returning in topic, I still don't understand >>> why the DNS resolutions doesn't works. >>> >>> Why the rule: >>> >>> DNS(ACCEPT) dmz:192.168.110.0/24 all >>> >>> don't work as expected? >>> What am I missing? >> >> Please send us the output of 'shorewall dump' collected as described at >> http://www.shorewall.org/support.htm#Guidelines > > > Filed it in http://apf.it/140111sh-dump.gz > Changed real IPs. > > Thanks for interest.
We actually need the dump to be taken when the rules that *don't* work are installed. We don't learn anything from looking at these rules. Also, please add logging to your DROP rule(s). Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ CenturyLink Cloud: The Leader in Enterprise Cloud Services. Learn Why More Businesses Are Choosing CenturyLink Cloud For Critical Workloads, Development Environments & Everything In Between. Get a Quote or Start a Free Trial Today. http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
