-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Friday 13 June 2003 21:41, Carlos E. R. wrote:
The 03.06.13 at 10:30, Christopher Mahmood wrote:
Then I suppose the firewall should let it pass, automatically, as part of an ungoing conversation... I have seen a number of them from several domain name servers.
Yeah, do you have FW_ALLOW_INCOMING_HIGHPORTS_UDP set to 'yes' or 'DNS'? Since you're running a nameserver it should be 'yes'.
Yes, I have:
FW_ALLOW_INCOMING_HIGHPORTS_UDP="DNS domain"
(although 1024 might not be really a high port :-? )
But, during boot, I always see:
Starting Firewall Initialization (phase 3 of 3) <notice>'/etc/init.d/rc5.d/S10cups start' exits with status 0 <notice>/etc/init.d/rc5.d/S11SuSEfirewall2_final start Warning: FW_SERVICE_DNS defined, but no DNS server found running!
Why do you not run the DNS server before the firewall is called when booting then this message will disappear.
<snip> - -- A child of five would understand this. Send someone to fetch a child of five. Groucho Marx - ---------------------------------------------------- This mail has been scanned for virus by AntiVir for UNIX Copyright (C) 1994-2003 by H+BEDV Datentechnik GmbH. PGP ID: 589F8449 Fingerprint: EB1C FACF 6BEB 540E 8AC0 F04E 2A25 A2F1 589F 8449 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE+6leIKiWi8VifhEkRAj2iAKCXafETy2MUv46hfvZT4xw9X6T7/gCfbyQv tVxKpLAXqU2R5QwT6qEqAGY= =et4q -----END PGP SIGNATURE-----