getting my own IP back
Eivind Olsen
eivind at aminor.no
Tue Feb 18 06:45:35 UTC 2003
--On 17. februar 2003 19:28 -0600 julianop <julianop at mninter.net> wrote:
> I don't know what the firewall would do. I have a Cisco 678 DSL router
> with NAT running to map the ports to the right machines on my private
> LAN, but that's about it. On the subject of firewalls, though, I added the
> "query-source address * port 53;", only because I think I'm supposed to.
Ahh, there's your problem. The Cisco 678 is probably _very_ similar to the
Cisco 677.
It's actually a piece of sh*t when it comes to its "intelligent" handling
of DNS-packets. It mangles the DNS-packets just like you've experienced.
I'm not aware of any way of disabling that "feature", there's not a "set
dnsmangle off"-command in CBOS... :)
The packet-mangling only happens on traffic from port 53 internally it
seems so a work-around (which I've used myself) is to configure BIND to
listen on another port as well (for example port 54) and forward the
external port 53 (from the external IP of the router) to your internal
DNS-server on port 54.
--
Regards / Hilsen
Eivind Olsen
<eivind at aminor.no>
More information about the bind-users
mailing list