Hello , i made a search here and in other places but can't find the answer.
I have a server wich is dns http mail
I have iptables running with the propper ports open to allow traffic and see web and mail as well as ssh etc...
The thing i can't get to work is the dns , when the fw is down the webpage loads fine (by it's domain name)
And it works fine with ip all the time.
I have tried opening port 53 on udp and tcp but it does not work.
This are my rules right now.
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT all -- xxay.xxxred.com 201.xxx.xxx.xxx
DROP icmp -- anywhere 201.xxx.xxxx.xxx
ACCEPT tcp -- 201.2xx.xx.xx 201.xxx.xxx.xxx tcp dpt:ssh
ACCEPT tcp -- 78.2xx.xx.xx 201.xxxxxxxxx tcp dpts:ftp-data:ftp
ACCEPT tcp -- 82.2xx.xx.xx 201.xx0xx.xx tcp dpts:ftp-data:ftp
ACCEPT tcp -- 193xx.xx.xx 201.xx0.xx.xx tcp dpts:ftp-data:ftp
ACCEPT tcp -- anywhere 201.2xx.xx.xx tcp dpt:http
ACCEPT tcp -- anywhere 201.xx.xx.xx0 tcp dpt
op3
ACCEPT tcp -- anywhere 201.xxx.xx.xx.xx0 tcp dpt:smtp
ACCEPT tcp -- 78.xxx.xx.xx 20x.xxx.xxx.x0 tcp dpt:ssh
ACCEPT tcp -- 82.xx.xx.xx. 201.xx.xx..xx0 tcp dpt:ssh
ACCEPT tcp -- 193.xxx.xx.xx.x 201xx.xx.xx0 tcp dpt:ssh
REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
Chain FORWARD (policy ACCEPT)
target prot opt source destination
REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
Chain OUTPUT (policy ACCEPT)
target prot opt source destination