> Does this tell you anything more? Others have said that my > firewall is > blocking port 53, but the problem persists when I turn the firewall > off. This is strange since SuSE ship Clamav with the OS. Perhaps I > should take it up with them.
Who controls the nameserver is listed in your /etc/resolv.conf? Do you control it, or does it belong to your ISP? It's certainly possible that the nameserver isn't configured to allow tcp queries (or responses). > In the meantime, is there a command specifically to test the port? And > if positive to unblock it. I see no way through the GUI. Can you telnet to port 53 of each of your nameservers (listed in /etc/resolv.conf)? <Example> $ telnet 10.68.5.162 53 Trying 10.68.5.162... Connected to mydns.example.com (10.68.5.162). Escape character is '^]'. ^] telnet> q Connection closed. </Example> That tells me that there isn't any firewalling or other restrictions on a tcp connection that dns would be using. If you get "Connection refused" or if it just hangs there forever then we've got to dig deeper. If you are able to connect to port 53 of your nameservers, I would think that the problem probably lies with your dns servers and that for some reason they don't have the capability to do tcp queries. If you can't connect to port 53 like this, verify that your firewall rules (I'm assuming that your firewall is iptables based on the machine that is running clamav-- please let us know if that's an incorrect assumption) are turned off by doing "iptables -L" it should look something like this: <Example> [EMAIL PROTECTED] root]# iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain RH-Lokkit-0-50-INPUT (0 references) target prot opt source destination </Example> (Having your firewall rules turned off certainly isn't the preferred method of operation, which I'm sure you're aware of. It does allow us to isolate the problem a little quicker however.) -ron ------------------------------------------------------- This SF.Net email is sponsored by the new InstallShield X. >From Windows to Linux, servers to mobile, InstallShield X is the one installation-authoring solution that does it all. Learn more and evaluate today! http://www.installshield.com/Dev2Dev/0504 _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
