Re: Iptables not blocking UDP port 53

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

Sean Carolan wrote:

I'm attempting to block access to port 53 from internet hosts for an
internal server.  This device is behind a gateway router so all
traffic appears to come from source ip 10.100.1.1.  Here are my
(non-working) iptables rules:
If it is behind a gateway router, how is port 53 traffic getting from the internet to that DNS server in the first place.
Also ... IF you are PORT FORWARDING port 53 from the internet to the DNS server, then the SOURCE IP will not be the IP of the forwarding device, but the IP of the machine making the request.
If this device is really behind a firewall why are you even forwarding any traffic to it from port 53 in the first palce?

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux