[H-GEN] local dns only
Tony Nugent
tony at linuxworks.com.au
Thu Dec 5 06:12:26 EST 2002
[ Humbug *General* list - semi-serious discussions about Humbug and ]
[ Unix-related topics. Posts from non-subscribed addresses will vanish. ]
On Thu Dec 05 2002 at 18:47, Tony Nugent wrote:
> The easiest way perhaps is to firewall the port...
>
> iptables -I INPUT -p tcp --syn --dport 53 -j DROP
> iptables -I INPUT -p udp --dport 53 -m state --state NEW -j DROP
>
> (or similar rules that do the same thing)
Oops sorry, I had meant to add "-i eth0" to both of those rules,
where that interface is the one on the internet side of your
firewall.
Cheers
Tony
--
* This is list (humbug) general handled by majordomo at lists.humbug.org.au .
* Postings to this list are only accepted from subscribed addresses of
* lists 'general' or 'general-post'. See http://www.humbug.org.au/
More information about the General
mailing list