John R. McPherson wrote:
John R. McPherson wrote:
The dropped packets log like this: 203.96.152.4 is the dns server, 203.79.74.233 is my dynamic ip
Jul 8 09:13:06 pixie kernel: IN= OUT=ppp0 SRC=203.79.74.233 DST=203.96.152.4 LEN=79 TOS=0x00 PREC=0x00 TTL=64 ID=147 DF PROTO=UDP SPT=53 DPT=53 LEN=59
and I also thought
#: Accept incoming packets from external networks on external interfaces /sbin/iptables -A INPUT -j ACCEPT -i ppp0 -d 203.79.74.40/32
would allow dns responses.
sorry, I thought it was blocking incoming, not outgoing.
Do your rules allow *any* outgoing packets with ppp0's ip address as the source?
I don't know, should they? I'm using the ipmasq "stronger" firewall setup, from /usr/share/doc/ipmasq/examples straight out of the box, except for editing the config file to close of all access from outside. In any case, it's working now, and I know a little more about how it works :-). Anyone have any ideas on the windows messenger audio setup? I found a newsgroups message that says a I need to open udp ports 5004:65535 for this. But I think I also need to configure it to forward these ports to my windows box, I tried that using an iptables command from the wiki but it didn't work, however now that my firewall is working I'll give it another go. If there is a practical alternative then I'll give that a go. However the people I want to talk with all use windows exclusively. Cheers g -- Glenn Ramsey <glenn(a)componic.co.nz> 07 8627077 http://www.componic.co.nz