Willi Dyck <[EMAIL PROTECTED]> writes: > > > Willi Dyck wrote: > > > > > > > > Hi. > > > > > > > > I don't understand the world (Debian)anymore. > > > > As soon as I compile things like > > > > - ip firewalling > > > > - ip masquerading > > > > - ip forwarding into the kernel, I can't ping any host by it's name. > > > > I am able to ping IP's. Seems like a DNS Lookup failure. But why?? > > > > I didn't changed any file I only compiled the features listed above. > > > > When I boot the old kernel again the problem seems to be gone. > > > > WHY??? What is the logical thing here??? > > > > Thanx for your help. > > >Gary Hennigan writes: > > My guess is that you've got a chain in the default rules that's > > blocking DNS access. DNS access isn't a simple one to block/unblock, > > if I remember correctly. Just look at the logs (/var/log/syslog) and > > see if any of the output rules, with a source inside your LAN, is > > being denied. Personally, if I were you I'd get PMFirewall, > > I have no chains blocking DNS access, I'm only blocking telnet and > netbios. > And /var/log/syslog isn't saying a word about ipchains. I wonder if my > firewall script was started at startup/links are set. How to check it?
ipchains -L will show you all the chains you have installed. Also, in Debian potato, there's ipchains-save which prints out all the installed chains in a format that can be restored via ipchains-restore. Gary
