On Fri, Feb 15, 2013 at 2:15 PM, Michael Ludvig <mludvig@xxxxxxxxxxxx> wrote: > On 16/02/2013, at 6:28, John Corps <envoys@xxxxxxxxx> wrote: > >> Very odd...put on a simple logging of >> iptables -A INPUT -i eth1 -j LOG --log-prefix "DNS TEST INPUT drop: " >> >> getting nothing in the logs...this is mind baffling. Even with TCPDUMP >> not seeing any packets unless i set client DNS to local ip of server, >> the 192.168.1.2 dns, set it to google for a test of 8.8.8.8 and get >> nothing in logs or with tcpdump. > > Let me guess - your DHCP doesn't provide default gw, only client IP and DNS server. > > With no default route the requests to 8.8.8.8 don't even make it out from the client (no route to host). With 192.168.1.2 it works because that IP is on the same subnet as the client and doesn't require default route to reach it. > > Could that be the reason? Just a guess... > > Michael > DHCP is definitely giving out the default gateway to the clients of 192.168.1.2. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
