[CentOS] BIND issues, server not responding

Ross S. W. Walker rwalker at medallion.com
Thu Aug 23 14:32:31 UTC 2007 

> -----Original Message-----
> From: centos-bounces at centos.org 
> [mailto:centos-bounces at centos.org] On Behalf Of Ray Leventhal
> Sent: Thursday, August 23, 2007 10:23 AM
> To: CentOS mailing list
> Subject: Re: [CentOS] BIND issues, server not responding
> 
> <big snip>
> Michel van Deventer wrote:
> > >From what I see you have iptables 'in the way'.
> > Try to add the following rule to iptables and then try again :) 
> > iptables -I RH-Firewall-1-INPUT -j ACCEPT -p udp --dport 53 
> >
> > If you like to have zone transfers or large queries done as 
> well then you also
> > need to open a port for tcp/53
> > iptables -I RH-Firewall-1-INPUT -j ACCEPT -p tcp --dport 53
> >
> > (to make the changes permanent do a 'service iptables save' 
> after adding the
> > lines)
> >
> >    Regards,
> >
> >    Michel
> >
> >
> >   
> 
> Hi Michel,
> 
> Thank you!  I applied the udp rule and all appears well.
> 
> This server is already receiving zones correctly.  The primary feeding
> it will not likely ever have more than 300 zones.  Does that 
> qualify as
> 'large queries' to the point where the tcp rule should be 
> applied as well?
> 
> Thanks again for all help offered.  The community support for 
> CentOS has
> solidified my confidence as having chosen CentOS as my distro 
> of choice.

You only need the tcp rule if you plan on serving up zone transfers,
not if plan on only requesting them.

-Ross

______________________________________________________________________
This e-mail, and any attachments thereto, is intended only for use by
the addressee(s) named herein and may contain legally privileged
and/or confidential information. If you are not the intended recipient
of this e-mail, you are hereby notified that any dissemination,
distribution or copying of this e-mail, and any attachments thereto,
is strictly prohibited. If you have received this e-mail in error,
please immediately notify the sender and permanently delete the
original and any copy or printout thereof.

More information about the CentOS mailing list