mirror/freebsd
1
0
Fork 0
mirror of https://git.FreeBSD.org/src.git synced 2024-11-30 08:19:09 +00:00
Code Issues Releases Activity

- dns queries might go also over TCP, so allow it.

Browse Source 
Approved by:	rink
MFC after:	1 week
This commit is contained in:
Daniel Gerzo 2008-07-17 20:00:18 +00:00
parent 9a75ea2333
commit f8c76347e1
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=180577
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
etc/rc.firewall
View File

@ -194,6 +194,7 @@ case ${firewall_type} in
${fwcmd} add deny tcp from any to any setup
# Allow DNS queries out in the world
${fwcmd} add pass tcp from me to any 53 setup keep-state
${fwcmd} add pass udp from me to any 53 keep-state
# Allow NTP queries out in the world
@ -294,6 +295,7 @@ case ${firewall_type} in
${fwcmd} add pass tcp from any to any setup
# Allow DNS queries out in the world
${fwcmd} add pass tcp from ${oip} to any 53 setup keep-state
${fwcmd} add pass udp from ${oip} to any 53 keep-state
# Allow NTP queries out in the world