Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I recently installed dnsmasq on my linux box. Everything seems to be working ok locally--I changed the resolv.conf to show that the loopback address is the nameserver and when I do an nslookup (locally) I get a very quick reply:
The problem I have is when I set a Windows box on the same LAN to use the Linux box as the DNS server. NSLookup on my Windows box results in timeout errors and the address never resolves.
I have set up Shorewall to open requests to port 53 and I can successfully telnet into port 53, so I don't think it is a firewall issue.
UPDATE: I removed dnsmasq and installed BIND instead, just to see if it is an issue with DNSMasq. BIND has the same issue. Local requests (via my terminal window) work fine. Requests from other PCs do not.
So now I am figuring that it is a firewall issue. I've opened port 53 in both directions (from fw to net and from net to fw). Are there other ports which need to be opened?
Does port 53 need to be open to both UDP and TCP requests?
I have been reading a bit more about how DNS works and one site mentioned that the initial request comes in via UDP on port 53 (and then reverts to TCP if the reply is too large for a UDP packet). Is this the case and if so do I need to open port 53 for UDP requests in Shorewall? (Right now it is only configured to allow TCP requests.)
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.