[ale] still trying to figure it out

Geoffrey esoteric at 3times25.net
Sat Aug 2 08:22:48 EDT 2003


David S. Jackson wrote:
> On Fri, Aug 01, 2003 at 02:56:50PM -0400 Geoffrey The Esoteric <esoteric at 3times25.net> wrote:
> 
>>Just recalled that my firewall permits dns queries only to/from my 
>>providers servers.  That probably explains the timeouts.  Sorry, didn't 
>>think of it before.
> 
> 
> Glad that question got answered.  Also glad the query made it to
> and back from your providers dns servers.
> 
> But does that answer why mybenefits.csplans.com didn't come up on
> the nat'ed browser?  Did the browsers dns query get forwarded to
> a different dns server or something?  Do you have a log of what
> your firewall does with packets?  Maybe you can find a record of
> its dropping a dns packet or something.

I did track the dns converstation via tcpdump.  In the case where I try 
to reach the site from the firewall, you see the dns request go out and 
the answer come back.  In the case of the request from the nat'd 
machine, you see the dns request go out, and the 'no name response 
return.  It doesn't appear anything get's dropped, just different 
answers.  Weird...  Further, this is the only site I have this problem with.

-- 
Until later: Geoffrey		esoteric at 3times25.net

The latest, most widespread virus?  Microsoft end user agreement.
Think about it...

_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale





More information about the Ale mailing list