On Thu, Aug 05, 2004 at 11:47:27AM -0400, David Cary Hart wrote: > On Thu, 2004-08-05 at 11:40, Ben Vitale wrote: > > David Cary Hart wrote: > > > > >By some chance are you using conntrack? > > > > > I don't believe I am using conntrack - not even sure what that is. > > > conntrack is the IPTables connection tracking module. It is usually > unnecessary and (supposedly) slows down DNS considerably if used. If you connect to _any_ hosts outside of your own LAN, connection tracking is integral to the proper functioning of an iptables firewall. -- Jack Bowling mailto: jbinpg@xxxxxxx
