Hello, I was hoping to work this out on my own but it's been hours and I've gotten nowhere. I just upgraded from a previous version of Marc's firewall2 to the latest one. With the previous firewall2, everything was fine and I was using squid and junkbuster together with the firewall. I am on a 56k dialup and use squid to speed up my own web browsing. I offer no external services at all. I have tried to figure out why this updated firewall isn't working for me, but I really don't understand it. The symptoms are: When I first boot up and dial up to browse the web, I can browse freely using squid and junkbuster. However, the second time I dial up and any time after that, I cannot go anywhere. The browser just keeps looking until it has timed out. I wonder if this has anything to do with the DNS lookup, although I really don't know how to check this. ANY help and advice would be much appreciated. Any settings in the YAST or the firewall config file would be great. Thank you Joss -- http://www.josswinn.org
On 27 Jun 2001, at 1:30, Joss Winn wrote:
Hello,
I was hoping to work this out on my own but it's been hours and I've gotten nowhere.
I just upgraded from a previous version of Marc's firewall2 to the latest one. With the previous firewall2, everything was fine and I was using squid and junkbuster together with the firewall.
I am on a 56k dialup and use squid to speed up my own web browsing. I offer no external services at all.
I have tried to figure out why this updated firewall isn't working for me, but I really don't understand it.
The symptoms are:
When I first boot up and dial up to browse the web, I can browse freely using squid and junkbuster.
However, the second time I dial up and any time after that, I cannot go anywhere. The browser just keeps looking until it has timed out.
Check the option keep routing stat or something like this I don't have firewall2
I wonder if this has anything to do with the DNS lookup, although I really don't know how to check this.
don't type www.suse.de but 213.95.15.200 and you will see if it actually is DNS
ANY help and advice would be much appreciated. Any settings in the YAST or the firewall config file would be great. Thank you
Joss -- http://www.josswinn.org
-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
D.Lord .~. /V\ // \\ "Smile -- It irritates people." /( )\ ^^-^^
On Tue, Jun 26, 2001 at 08:46:42PM +0200, d_lord@gmx.de wrote:
On 27 Jun 2001, at 1:30, Joss Winn wrote:
Hello,
I was hoping to work this out on my own but it's been hours and I've gotten nowhere.
I just upgraded from a previous version of Marc's firewall2 to the latest one. With the previous firewall2, everything was fine and I was using squid and junkbuster together with the firewall.
I am on a 56k dialup and use squid to speed up my own web browsing. I offer no external services at all.
I have tried to figure out why this updated firewall isn't working for me, but I really don't understand it.
The symptoms are:
When I first boot up and dial up to browse the web, I can browse freely using squid and junkbuster.
However, the second time I dial up and any time after that, I cannot go anywhere. The browser just keeps looking until it has timed out.
Check the option keep routing stat or something like this I don't have firewall2
I wonder if this has anything to do with the DNS lookup, although I really don't know how to check this.
don't type www.suse.de but 213.95.15.200 and you will see if it actually is DNS
Yes, that works. And if I turn off my proxy settings in my browser, normal web browsing is possible, so it is somehow related to when I force my browser to use the squid proxy and dns lookup. I have the correct dns information in my squid.config file. Like I said, this worked fine before with the old firewall. I also now get messages like this in my xconsole: SuSE-FW-UNALLOWED-TARGETIN=ppp0 OUT= MAC= SRC=202.248.2.226 DST=211.2.96.210 LEN=154 TOS=0x00 PREC=0x00 TTL=247 ID=28009 DF PROTO=UDP SPT=53 DPT=1284 LEN=134 Joss -- http://www.josswinn.org
participants (2)
-
d_lord@gmx.de
-
Joss Winn