I have an RH9 system with three nics: 1 WAN & 2 LANs. One lan is really
locked down - the only thing allowed into it are responses to traffic
initiated frm that lan.
The DNS server is on the other LAN. I'm seeing occaisional dns packets
being blocked from entering the locked down LAN. My assumption, correct
or not, is that these are slightly delayed packets that are arriving
after the state has been torn down, and they are thus blocked. I see
something like 30 or so of these every 8 hours or so.
Is this something people see a lot? If so, what is the best way to dal
with it?
-ste
