At 987713387s since epoch (04/19/01 15:49:47 -0400 UTC), Noah L. Meyerhans wrote:
> If you run 'netstat -ulp' (as root, of course) you'll find that bind is > listening on some high port. If you allow UDP on ports > 1024 you should > be all set. Or, if you don't feel like opening all 64,000+ of those ports, try a rule like: iptables -A INPUT -p UDP --source-port domain -j ACCEPT Since DNS requests will appear to come from port 53 (domain), this rule lets all such responses in. For added sanity you could ensure that the destination port is above 1024. Jason -- Jason Healy | [EMAIL PROTECTED] LogN Systems | http://www.logn.net/
