On Thu, Apr 19, 2001 at 03:17:24PM -0400, Janet Post wrote: > I have no trouble if I set the policy of the chain in question to > ACCEPT, I have no trouble.
The problem is that DNS requests don't usually happen on port 53. You are seeing hangs because iptables is trying to resolve the hostnames of the IP addresses specified in your access rules. Adding the '-n' tag will prevent the hang. Having iptables hang, though, is not your problem but rather a symptom of the problem. If you run 'netstat -ulp' (as root, of course) you'll find that bind is listening on some high port. If you allow UDP on ports > 1024 you should be all set. noah -- _______________________________________________________ | Web: http://web.morgul.net/~frodo/ | PGP Public Key: http://web.morgul.net/~frodo/mail.html
pgpbf3PbHHvvf.pgp
Description: PGP signature
