Seeking help with firewall rule for dns traffic (nftables/iptables)
by gotaquestion from LinuxQuestions.org on (#6QJ8K)
I had little success trying to set up an explicit rule to allow DNS traffic reported in the log below. Need help to at least understand what is going on.
From my understanding, this is not about ICMP per se, but rather about DNS traffic (port 53) as indicated within square brackets. However, it's not clear neither which interface, nor which chain is involved.
What rule should I implement to allow this traffic? (either nftables, or iptables will do).
Any help much appreciated. Thanks!
Code:Sep 07 15:21:29 host.domain.com kernel: IN= OUT=tun0 SRC=10.xxx.yyy.1 DST=10.xxx.yyy.3 LEN=93 TOS=0x00 PREC=0xC0 TTL=64 ID=8228 PROTO=ICMP TYPE=3 CODE=3 [SRC=10.xxx.yyy.3 DST=10.xxx.yyy.1 LEN=65 TOS=0x00 PREC=0x00 TTL=64 ID=3516 PROTO=UDP SPT=61398 DPT=53 LEN=45 ]
From my understanding, this is not about ICMP per se, but rather about DNS traffic (port 53) as indicated within square brackets. However, it's not clear neither which interface, nor which chain is involved.
What rule should I implement to allow this traffic? (either nftables, or iptables will do).
Any help much appreciated. Thanks!
Code:Sep 07 15:21:29 host.domain.com kernel: IN= OUT=tun0 SRC=10.xxx.yyy.1 DST=10.xxx.yyy.3 LEN=93 TOS=0x00 PREC=0xC0 TTL=64 ID=8228 PROTO=ICMP TYPE=3 CODE=3 [SRC=10.xxx.yyy.3 DST=10.xxx.yyy.1 LEN=65 TOS=0x00 PREC=0x00 TTL=64 ID=3516 PROTO=UDP SPT=61398 DPT=53 LEN=45 ]