I have a newly built RHEL5 OS that is unable to talk to the DNS server. I am unable to telnet resolv.conf entry over port 53 but apparently this port has been opened.
# telnet 209.212.96.1 53
and.....
# dig www.google.com
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2 <<>> www.google.com
;; global options: printcmd
;; connection timed out; no servers could be reached
I can only assume therefore that this is a server issue.
So, I have added the following entry to my iptables:
# iptables -A INPUT -s 41.181.59.124/29 -d 209.212.96.1 -m state --state NEW -m tcp -p tcp --dport 53 -j ACCEPT
# iptables -nL
Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT tcp -- 41.181.59.120/29 0.0.0.0/0 state NEW tcp dpt:53
ACCEPT tcp -- 41.181.59.120/29 209.212.96.1 state NEW tcp dpt:53
But still unable to telnet to the nameserver over port 53.
Can anybody provide any pointers to what I can try next?
Still hard to tell. This is iptables from client, not server, but you use dport 53... It would be sport at INPUT. Also you've an entire chain before these rules. Need output of iptables -S
This is an external virtual machine so I have no control over the network.
However I think it may have got to do with a restriction between the host that the VM sits on and the DNS server. Waiting on confirmation from the external hosting people to fond out if they can connect to the named server over port 53 from the server that is hosting the VM.