[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail forwarding
- Subject: RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail forwarding
- From: "Sean Ward" <planxty@xxxxxxxx>
- Date: Tue, 23 Apr 2002 07:58:44 -0500
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Didn't work. Bummer.
Sean
-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx] On Behalf Of Gerald Waugh
Sent: Tuesday, April 23, 2002 6:37 AM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: RE: [cobalt-security] pmfirewall , IPCHAINS, CDONTS and mail
forwarding
On Tue, 23 Apr 2002, Gerald Waugh wrote:
> On Tue, 23 Apr 2002, Sean Ward wrote:
> > Thanks! Now if I can just figure out why I can't add the
nameservers to
> > the pmfirewall.conf without the box dropping off the net...
> >
> > DO I need a similar rule for port 53?
>
> Mine looks like this, do you have both udp and tcp rules?
> #DNS
> $IPCHAINS -A input -p tcp -s $REMOTENET -d $OUTERNET 53 -j ACCEPT
> $IPCHAINS -A input -p udp -s $REMOTENET -d $OUTERNET 53 -j ACCEPT
Forgot these
$IPCHAINS -A output -p tcp -s $OUTERNET -d $REMOTENET 53 -j ACCEPT
$IPCHAINS -A output -p udp -s $OUTERNET -d $REMOTENET 53 -j ACCEPT
> --
> Gerald Waugh
> http://www.frontstreetnetworks.com
> Front Street Networks LLC - 203-785-0699
> 229 Front Street, Ste. #C, New Haven CT, 06513-3203
--
Gerald Waugh
http://www.frontstreetnetworks.com
Front Street Networks LLC - 203-785-0699
229 Front Street, Ste. #C, New Haven CT, 06513-3203
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security