Thank you Paul...... makes perfect sense now !
Declan
On 08-09-00, Paul Jakma scribbled ...
>> no.. you have 2 rules to catch tcp and DNS traffic. However your rules
> match when the /source/ port is domain. ie your rule matches:
>> packet from 192.168.0.100:domain going out
>> but not:
>> packet from 192.168.0.100 going to any:domain.
>> the latter is probably more what you wanted. i think rather you
> want to allow any packets going /to/ domain. see below..
>>> this logs everything... for debugging i take it?
***************************************************************
The contents of this Email and any files transmitted with it
are confidential and intended solely for the use of the
individual or entity to whom it is addressed. The views stated
herein do not necessarily represent the view of the company.
If you are not the intended recipient of this Email you may not
copy, forward, disclose or otherwise use it or any part of it
in any form whatsoever. If you have received this mail in
error please Email the sender.
***************************************************************
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
