d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

- dns queries might go also over TCP, so allow it.

Browse Source 
Approved by:	rink
MFC after:	1 week
This commit is contained in:
danger 2008-07-17 20:00:18 +00:00
parent eff9ee09b4
commit ac5e6208c0
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
etc/rc.firewall
View File

@ -194,6 +194,7 @@ case ${firewall_type} in
${fwcmd} add deny tcp from any to any setup
# Allow DNS queries out in the world
${fwcmd} add pass tcp from me to any 53 setup keep-state
${fwcmd} add pass udp from me to any 53 keep-state
# Allow NTP queries out in the world
@ -294,6 +295,7 @@ case ${firewall_type} in
${fwcmd} add pass tcp from any to any setup
# Allow DNS queries out in the world
${fwcmd} add pass tcp from ${oip} to any 53 setup keep-state
${fwcmd} add pass udp from ${oip} to any 53 keep-state
# Allow NTP queries out in the world