Hi there,
I got a silly problem on the following config:
ASL 5.205
Externel Interface to DSL, internal lan 10.1.1.0/24 on eth0, client WS on 10.1.1.100,Masquerading on
Packte-Filter-Roule:
Source: Internal Lan , Service: DNS, Dest:all, Allow.
If I now try a DNS-Request (to Server 217.119.50.2) Iwill find the following entry in my log:
2005:11:01-09:14:26 (none) kernel: DROP: IN= OUT=eth0 SRC=10.1.1.1 DST=10.1.1.100 LEN=92 TOS=0x00 PREC=0xC0 TTL=64 ID=5297 PROTO=ICMP TYPE=3 CODE=0 [SRC=10.1.1.100 DST=217.119.50.2 LEN=64 TOS=0x00 PREC=0x00 TTL=128 ID=4316 PROTO=UDP SPT=1302 DPT=53 LEN=44 ]
If I allow every Service("any") everything works fine.
The best of all: I got the same ASL-Box on a second location, and no problems there.
Where is my mistake?
[:S]
Thanks for every hint
Martin
This thread was automatically locked due to age.
