DNS server works but keep getting "host unreachable resolving" error

Barry Margolin barmar at alum.mit.edu
Tue Sep 22 16:16:43 UTC 2009


In article <mailman.565.1253632651.14796.bind-users at lists.isc.org>,
 Matus UHLAR - fantomas <uhlar at fantomas.sk> wrote:

> On 21.09.09 19:26, Shi Jin wrote:
> > I've confirmed that the problem is firewall related. I've replaced my
> > current Untangle firewall with a simplest Linux NAT iptables firewall and
> > everything works perfectly, without any complains.
> 
> I'd say it was bad configuration, not necessarily a bad firewall. The
> tcpdump would help us, unless you are satisfied with using linux iptables...

Anyone want to bet that he has {query-source * port 53;} in his 
named.conf, and this is what the firewall was blocking?

-- 
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE don't copy me on replies, I'll read them in the group ***



More information about the bind-users mailing list