I want to using iptables in order to filter DNS instead of IP
I don't have any thing documents mention this
please help me, thanks
Results 1 to 3 of 3
Thread: IPTables couldn't filter dns
-
27th January 2011, 06:52 PM #1Junior Member
- Join Date
- Apr 2010
- Posts
- 14
- Thanks
- 2
- Thanked 0 Times in 0 Posts
- Rep Power
- 0
IPTables couldn't filter dns
-
27th January 2011, 07:21 PM #2Senior Member
- Join Date
- Jun 2007
- Location
- Hyderabad, AP, India
- Posts
- 805
- Thanks
- 44
- Thanked 55 Times in 48 Posts
- Rep Power
- 11
What do you mean my Filter DNS?
Do you want to allow/deny DNS queries or do you mean FQDN's?
If it is DNS queries please make sure that DNS uses both TCP as well as UDP protocol to work..Thanks,
Surendra Kumar Anne
Linux: Fast, friendly, flexible and .... free!
Support Open source.
http://www.linuxnix.com
27th January 2011, 08:53 PM #3Member
- Join Date
- May 2010
- Posts
- 53
- Thanks
- 0
- Thanked 6 Times in 6 Posts
- Rep Power
- 4
I know what you mean. You want to use domain names instead of IP addresses. The main trouble with using hostnames with iptables is that the IP is resolved at the time the rule is added. Also kernel cant wait for DNS to resolve IP address, that would be so slow.
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Similar Threads
-
real time blocking with IP Filter/pf
By Hsinan in forum Networking, Firewalls and SecurityReplies: 0Last Post: 23rd April 2010, 04:27 AM -
dansguardian web filter time control
By sandeepvson in forum Proxy ServersReplies: 0Last Post: 7th April 2010, 05:07 PM -
Using header and body checks as profanity filter
By primal23 in forum Mail ServersReplies: 3Last Post: 15th September 2009, 11:39 AM -
dkim-filter
By ms.shams in forum Ubuntu / DebianReplies: 0Last Post: 22nd September 2008, 12:00 AM -
Filter MAC addresses with squid on SuSE 10
By AQG in forum Linux softwareReplies: 8Last Post: 18th August 2006, 04:49 PM
Posting Permissions
Reply With Quote