Hi all.
I'm trying to setup an SMEServer to be used as the "public" DNS Server, so when an external user requests "
www.mak.fr" it resolves to the SME Server. The server is also supposed to receive incoming mail from Internet clients.
The ".fr" root servers are already pointing to my SME Server.
I've already configured tinydns to listen to the external IP:
# config setprop tinydns ListenIP <myip>
# signal-event post-upgrade
# signal-event reboot
But I figured that the firewall (iptables) is blocking UDP connections to port 53. I tried to open it with the hint in the Manual:
# config set tinydns service access public status enabled UDPPort 53
But an "iptables -vL -n" will give me
Chain InboundUDP_3983 (1 references)
pkts bytes target prot opt in out source destination
0 0 denylog all -- * * 0.0.0.0/0 !192.168.2.1
21 1191 denylog udp -- * * 0.0.0.0/0 192.168.2.1 udp dpt:53
0 0 ACCEPT udp -- * * 0.0.0.0/0 192.168.2.1 udp dpt:53
0 0 denylog udp -- * * 0.0.0.0/0 192.168.2.1 udp dpt:53
which seems to block it anyway. I've tried to open it manually with:
# iptables -I InboundUDP_3983 -p udp -i eth1 --dport 53 -j ACCEPT
But this rule will get wiped out next time, so it's not a fix either.
I also have another issue: the SME Server is behind a router [which is behind a cable modem], so there is an extra network between the server and modem, and the GUI won't let me change the MX record which resolves to the server's external IP [which is 192.168.2.1, the middle network], instead of the "public" one. I can, however, change the other hostnames (www, mail, etc).
Is there any simpler way to accomplish this? I'm walking in the right direction? I'm kind of lost here....
Best regards,
-plc