Forcing all DNS traffic from the LAN to the firewall

Hi Michael - Port 853 is not forgotten! I just set it aside to get port 53 done first. I also plan to do port 123 (NTP).