That is right but only when all clients are using my
DNS server. I will not be able to block MX requests if
they are using some other DNS servers which are
out-side of my network and I can not force my clients
to use only my DNS server.
Using iptables I can build a rule for certain ICMP
TYPE Packets. Is there any rule which can match DNS
query TYPE?
regards
Pravin Rane.
--- Daniel Chemko <dchemko@xxxxxxxxxx> wrote:
> pravin rane wrote:
> > Hi all,
> >
> > I want to block DNS MX query made through my
> network.
> > What iptables rule I should use.
>
> You don't use iptables to do this. named has built
> in ACL's to determine
> who can perform what oeprations. Look at bind
> 'view's for more
> information on how to properly deal with name
> resolution issues.
>
=====
--
__..-'
_.--''
_...__..-'
.'
.'
.'
.'
.------._ ;
.-"""`-.<') `-._ .'
(.--. _ `._ `'---.__.-' Fly High Till You Reach
` `;'-.-' '- ._ The Sky
.--'`` '._ - ' .
`""'-. `---' ,
''--..__ `\ Warm Regards
``''---'`\ .'
`'. ' Pravin Rane.
__________________________________
Do you Yahoo!?
Yahoo! Mail - You care about security. So do we.
http://promotions.yahoo.com/new_mail
