ipchains to allow remote dns lookup?

ifm · 07-03-2002, 03:22 PM

I need to figure out what ports to open to allow "outside" machines to lookup dns records on the BIND9 DNS server that is running on the machine.

Its kind of a usless thing to have an authoritative dns server for some domains, when no one in the world can get the zone record information to know WHERE the domains point too !! LOL!!!

So uhm ... could anyone be a peach and let me in on the secret? Lots of ports on this machine, and I don't wanna open the wrong ones (or all of them).

ifm · 07-05-2002, 12:58 PM

No one knows? There are some 65 tousand ports for me to find the right one to allow... apparently the posts allocated to "domain" do not work for remote zone information gathering. Still firewalled somewhere. And since I can't monitor what port the remote softwares are trying to HIT, I cant very well know which one to open... waah... =)

So, I ask a second time, anyone? anyone? (read my above post for the exact question).

Thanks.

pk21 · 07-06-2002, 05:19 PM

You can look what port is listening for dns requests with netstat.

pk21 · 07-06-2002, 05:20 PM

And you could also take a look at the file /etc/services if you are using redhat.

ifm · 07-06-2002, 09:19 PM

"netstat" ... what a wonderful tool! How come I never knew of this tool? BAH!

Ok, yeah, thanks, that helped big time, got it all sorted out and all is working fine now. Thanks!