[SLL] can ping IPs but not hostname(proxy ARP server with NAT
mode)
Steve McCarthy
mccrew at gmail.com
Wed May 18 08:53:17 PDT 2005
Also, given that the original poster is working on firewall rules, it
would be a good idea to check whether the iptables configuration is
such that DNS replies are getting dropped on the floor. DNS traffic
is UDP port 53.
Perhaps turn logging on for all packets that get dropped? The old
ipchains supports a '-l' option, but the (dated) man page I just
looked at for iptables didn't seem to have the same option.
-Steve
On 5/18/05, Douglas Kirkland <douglas at slugstone.net> wrote:
> Your firewall is working fine. Check your DNS server. The box your
> pinging from has no DNS working.
>
> Douglas
>
> qwerty wrote:
> > Hi Lists,
> >
> > I was running out all of my brain. So please give me some light.
> > I have already getting this script running on another server as a
> > firewall/NAT server and it works well.
> >
> > But by now it was having trouble with NAT to go out to Internet. For
> > example, I can ping to whatever IPs but any domain name will response
> > nothing. The main difference is that this server is running as a proxy
> > ARP server. So eth0 and eth1 have the same IP(1.1.1.1) and
> > eth2(10.10.10.1) is provided NAT for subnet 10.10.10.0/24.
<snipped for brevity>
--
Steve | sjm@ | mccrew@
McCarthy | mccrew.com | gmail.com
(gmail invites available - just ask)
More information about the linux-list
mailing list