On 10/29/2009 10:29 AM, Vinicius Coque wrote: >> does it work to define iptables rules with a fqdn as destination >> instead of an IP address? Or is it useful to resolve the name first >> using e.g. nslookup, writing the result to a variable which is then >> used within the -d statement? I guess that depends on what you are trying to achieve, afaik iptables will not hit DNS for each packet, and will only resolve at time of table / policy creation. - KB _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: iptables -d fqdn instead of IP
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: iptables -d fqdn instead of IP
- From: Karanbir Singh <mail-lists@xxxxxxxxx>
- Date: Thu, 29 Oct 2009 11:00:07 +0000
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <ebb86f500910290329g1fb699fem36d5b0946327541e@xxxxxxxxxxxxxx>
- References: <fac47fca0910281344x21eb8549s1187a00be1260f64@xxxxxxxxxxxxxx> <ebb86f500910290329g1fb699fem36d5b0946327541e@xxxxxxxxxxxxxx>
- User-agent: Mozilla/5.0 (X11; U; Linux i686 (x86_64); en-US; rv:1.9.1.4pre) Gecko/20090915 Thunderbird/3.0b4
- Follow-Ups:
- Re: iptables -d fqdn instead of IP
- From: Ryan Lynch
- Re: iptables -d fqdn instead of IP
- References:
- iptables -d fqdn instead of IP
- From: Marcus Moeller
- Re: iptables -d fqdn instead of IP
- From: Vinicius Coque
- iptables -d fqdn instead of IP
- Prev by Date: Re: iptables -d fqdn instead of IP
- Next by Date: Re: vnc for non-root
- Previous by thread: Re: iptables -d fqdn instead of IP
- Next by thread: Re: iptables -d fqdn instead of IP
- Index(es):
 |