I beleive this rule should enable me to reach the DNS servers from eth0 
since PRIV_IFACE is set to eth0. Do you see anything wrong with it?

##############################################################################
#
# To define your private network, use the PRIV_IFACE configuration
# variable above.
#
# We allow all traffic in and out of the private network
if [ ! "$PRIV_IFACE" == ""]; then
	$IPTABLES -A INPUT -s 0/0 -e $PRIV_IFACE -d $PRIVATE_IP -p ALL -j
ACCEPT
fi



Francis Cianfrocca wrote:
> 
> I think I remember seeing a rule that inhibited outbound connections of 
> any
> kind except from the public interface (eth1). If your DNS servers are on 
> a
> different network, then you won't be able to reach them. If dig just 
> hangs,
> then you know it's a connectivity problem. Do you have any DNS servers 
> you
> can access (like from your ISP) from your public interface?


-- 
Posted via http://www.ruby-forum.com/.