Hi Guys,

I am having a strange problem with setting up fw-jay, an ncurses-based tool for setting up iptables. The thing is i had the exact same configuration before, but now on a new installation of the same system it is having issues.

The problem seems with DNS, when I do DHCP negotiation, i get some nameservers written in /etc/resolv.conf.

the problem is when i start fw-jay with my rules set, i can no longer
resolve hostnames, although i can connect to google.com using the IP address. I have tried very different combination of rules (DNS and DHCP connections are allowed).

I used wireshark, to see the hostname resolution process, and all nameservers in /etc/resolv.conf are contacted, and a successful reply is sent, but ping google.com doesn't resolve.

I also tried to see if the reason could be dropped DNS response packets, so i enabled logging of dropped packets in /var/log/messages, but nothing shows there...

What I did was i just overwrote /etc/resolv.conf with 8.8.8.8 (google's DNS) and it works while the firewall is running!

Maybe I am missing something somewhere?

Any ideas are appreciated,

Thanks

I suggest you start with running 'iptables-save > /tmp/ipables.rules' and then attach "/tmp/ipables.rules" as plain text file. Easier when one can look at the actual rule set IMHO.