Security Basics mailing list archives
Re: Can't Resolve from behind firewall
From: "Dickon Newman" <dnewman () skylan net>
Date: Fri, 18 Oct 2002 08:41:17 -0400
Remember that DNS is UDP port, not a TCP port. I'm not sure about how you've setup your firewall, or if it even makes the distinction between the two (I would hope that it would!). Hope that helps, Dickon... ----- Original Message ----- From: <khayes () eastbay com> To: "Ahmed.Shazly" <ahmed.shazly () hotpop com> Cc: <security-basics () securityfocus com> Sent: Thursday, October 17, 2002 2:42 PM Subject: Re: Can't Resolve from behind firewall
Have you tried taking at a look at the network traffic to see if the two DNS servers are even getting past the handshake phase? From the limited information I have, I'd have to venture a guess that they're not. Ken Hayes Network Administrator Eastbay / Footlocker.com Wausau, WI Offices (715) 261-9573 khayes () eastbay com To:
<security-basics () securityfocus com>
cc: "Ahmed.Shazly" Subject: Can't Resolve from behind
firewall
<ahmed.shazly () hotpop com > 10/16/2002 05:15 PM Hi everyone, I Just got a PIX 501 for my company and since they have strict policies
i
do have to strict usage to port 80, now with the PDM i try permiting outgoing traffic from the my local net on port 80 to any outside port and permit outgoing traffic on port 53 for the DNS to any port since we use
the
DNS server of our ISP. the only thing that happens is that i still can't resolve websites and they only work if i use their IP addresses. i do use PAT and i'm not sure wheather it has anything to do with whats going on
any
suggestions? Regards, A.Shazly - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
-
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
-
- - - - - - - - - - - - - - - The information in this e-mail, and any attachment therein, is
confidential
and for use by the addressee only. If you are not the intended recipient, please return the e-mail to the sender and delete it from your computer. Although the Company attempts to sweep e-mail and attachments for viruses, it does not guarantee that either are virus-free and accepts no liability for any damage sustained as a result of viruses.
Current thread:
- Re: Can't Resolve from behind firewall khayes (Oct 17)
- Re: Can't Resolve from behind firewall Dickon Newman (Oct 18)
- Re: Can't Resolve from behind firewall michel 'ziobudda' morelli (Oct 18)
- Re: Can't Resolve from behind firewall Sumit Dhar (Oct 21)
- Re: Can't Resolve from behind firewall Jason Kohles (Oct 21)
- Re: Can't Resolve from behind firewall michel 'ziobudda' morelli (Oct 18)
- <Possible follow-ups>
- RE: Can't Resolve from behind firewall Security Newsletters-TM (Oct 17)
- RE: Can't Resolve from behind firewall YashPal Singh (Oct 21)
- Re: Can't Resolve from behind firewall Dickon Newman (Oct 18)