I'm trying to set-up a DNS server on my own (Debian Linux) server.

It works, providing I turn off the firewall - not an option!

So, I need a rule that allows DNS.

Does anyone know what that is?

Web searches haven't provided an answer.

Thanks

Gary.

That would depend on your firewall.

IPTABLES controlled with shorewall.

You need a rule that allows incoming connections on tcp/udp port 53.

You may need to open the firewall so the dns server can talk to the next level DNS server, as well as allowing your PCs to query your DNS.

I probably wouldn't bother, personally. My router does DNS, it might cache some, it might not. My ISPs DNS servers are fast enough it doesn't matter.

Port 53 is open

I don't use shorewall, so this is just a guess based on a web search, but it seems this should do it assuming your zone names are the same
loc = local network
fw = firewall

ACCEPT loc fw udp 53

If you're answering queries from outside, perhaps:

ACCEPT net fw udp 53

I got this here: http://wiki.debian.org/HowTo/shorewall

Hope this helps.

Your best bet would be to use Shorewall rather than working with iptables directly - as I remember from hard experience is it very easy to set a default of blocking all traffic.