Hy, At first glance I noticed that this script only allows incoming on 53 for proto udp: $IPT -A INPUT -p udp --source-port 53 -j ACCEPT You should add another entry like this one because DNS uses BOTH tcp and udp: -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
