[Dnsmasq-discuss] New setup. DNS OK, DHCP is silent
Lovelady, Dennis E.
dlovelady1 at dtcc.com
Sat Nov 24 17:35:04 GMT 2012
Thanks, Peter.
I have:
Disabled iptables
Run iptables -F
Renamed iptables and all the associated symlinks
Rebooted.
So I think iptables is out of the way. (There are innumerable firewalls between you and that server; it can do without iptables for now. And I can quickly restore.)
Still no joy. Here's my netstat -nap output. It's not quite like yours. What might that mean?
netstat -nap | grep dnsmasq
tcp 0 0 0.0.0.0:53 0.0.0.0:* LISTEN 1599/dnsmasq
udp 0 0 0.0.0.0:53 0.0.0.0:* 1599/dnsmasq
unix 2 [ ] DGRAM 4426 1599/dnsmasq
I appreciate the guidance.
-----Original Message-----
From: Peter Schiefer [mailto:peter at fli4l.de]
Sent: Saturday, November 24, 2012 10:07 AM
To: dnsmasq-discuss at lists.thekelleys.org.uk
Subject: Re: [Dnsmasq-discuss] New setup. DNS OK, DHCP is silent
Hi Dennis,
Am 24.11.2012 15:30, schrieb Lovelady, Dennis E.:
> INPUT-INTERNAL all -- 192.168.158.0/24 anywhere
> ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
> ACCEPT icmp -- anywhere anywhere icmp echo-request
> ACCEPT tcp -- anywhere anywhere tcp dpt:http
> ACCEPT tcp -- anywhere anywhere tcp dpt:https
> ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
> REJECT tcp -- anywhere anywhere tcp dpt:auth reject-with icmp-admin-prohibited
> DROP all -- anywhere anywhere
I Miss a rule like
ACCEPT udp -- anywhere anywhere udp dpt:dhcp
in your setup
dhcp-requests uses the udp-protokol and the port 67
See the following output on my fli4l-router-machine (dnsmasq is
configured as dns and dhcp-server)
netstat -nap | grep dnsmasq
tcp 0 0 0.0.0.0:53 0.0.0.0:*
LISTEN 3510/dnsmasq
udp 0 0 0.0.0.0:53 0.0.0.0:*
3510/dnsmasq
udp 0 0 0.0.0.0:67 0.0.0.0:*
3510/dnsmasq
Cheers,
Peter
--
mailto:peter at fli4l.de [fli4l-/eisfair-Team]
<BR>_____________________________________________________________
<FONT size=2><BR>
DTCC DISCLAIMER: This email and any files transmitted with it are
confidential and intended solely for the use of the individual or
entity to whom they are addressed. If you have received this email
in error, please notify us immediately and delete the email and any
attachments from your system. The recipient should check this email
and any attachments for the presence of viruses. The company
accepts no liability for any damage caused by any virus transmitted
by this email.</FONT>
More information about the Dnsmasq-discuss
mailing list