Hiya

We have nw6 sp3 running named. I have configured the forward option to

forward any unresolved dns to our ISP's DNS servers.

This works when I unload ipflt on the bordermanger server or if I
allow all
traffic out to the ip address of the DNS server, however when I create
the
two filter exceptions from Craig book (DNS from internal PCs to an
ISP's DNS
servers) it doesn't work.

I assume I can do some sort of allow all traffic out to port 53 to the

specific ip address of the dns servers.

Am I doing anything wrong?

Thanks

Marcus