forward DNS requests
 

hi,

can anyone help me nat the DNS requests, I have a gateway , client can connect to that gate way but can not connect or ping to the DNS server in the LAN, i want to make that i'll configure my GATEWAY as DNS in client and when ever my client sends DNS request's , request goes to GATEWAY IP and there my GATEWAY should redirect request to actual DNS server in my LAN...

so all the web request comes on 80 port will be natted to x.x.x.x:80

any chance to nat DNS request in the same way did above

thank you.

The protocol used by DNS is (usually) udp, and the port number is 53. Change the iptables line above accordingly, and it should work.

Is that your entire firewall setup? The only way the commands above can successfully forward requests to an internal web server without an entry in the FORWARD chain of the filter table, is if the FORWARD policy is ACCEPT. If so, your setup is horribly insecure.

hi Ser Olmy,

thank for reply, i tried as you said, then i found the below result,


if you notice the lines highlighted with red, it's my nameserver ip, so my other server redirecting perfectly as defined in iptables, but from there it's not connecting or giving reply, please tel me.

FOR YOUR INFORMATIOIN, my client is in other network, but client can connect to my other server in whcih we defined nating rule...

DNS packets and ICMP echo requests (which is what "ping" sends) are two entirely different things.

It's not at all clear what you are trying to accomplish. Your first post indicates that the "client" and the DNS server are on different sides of the gateway, but the "ping" test you just performed only makes sense if they are on the same side.

A simple diagram of your network would be a great help.