Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I am running my network behind firewall on suse linux 10.1
For only one machine ( Ex. 192.168.1.100 ). I got full permissions in firewall, and for other machines there is no internet. So what i try to do is to configure a forward dns server in the 192.168.1.100
and from the client i can resolve the public address like ( google, yahoo) but via browser i cant able to access internet. I know that configuring a squid proxy server will do it for me . But i want to know how to solve this .Can some one help in this case.
If I understand you correctly, your client pc's are blocked by the firewall and only your dns server can access the internet through the firewall. In that case you will have to accept traffic from your client ip's on your firewall. If you don't want to do this you will have to go the proxy route.
If I understand you correctly, your client pc's are blocked by the firewall and only your dns server can access the internet through the firewall. In that case you will have to accept traffic from your client ip's on your firewall. If you don't want to do this you will have to go the proxy route.
Hope this helps
What you are saying is correct but when i query for a nslookup from the client to a public site via forward dns i am getting response so why query from the firefox is not resolving
So what is happening now is your client is getting it's DNS information from 192.168.1.100 and google resolves. But your firewall only allows your 192.168.1.100 IP access to the interent, your client has no way of getting to the internet and so caanot get to the google webpage.
So you will have to add a rule to accept from source ip range of 192.168.1.0/24, this will allow your client to get to the internet. You will also have to specify your firewall as the default gateway for your client.
If you don't want to change your firewall, then you could try setting 192.168.1.100 as the default gateway and activate ip forwarding on that eth interface. This one might work.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.