udp port 4932
Mark_Andrews at isc.org
Mark_Andrews at isc.org
Fri Jan 31 11:09:02 UTC 2003
>
>
> Dear all,
> I noticed that our dns server send many query's to other name servers using
> source port 4932 and destination port 53, but the problem is that those name
> servers reply to my dns server with source port 53 and destination udp
> 4932,as sequence udp port is denied on my firewall.
Firstly why are you allowing out queries for which you won't
allow reply traffic to? It results in other machines being
pounded. I would be fixing your firewall so that you only allow
out traffic for which you will accept replies.
> Does anybody know about this?
See query-source, notify-source and transfer-source.
Mark
> Thanks
>
> _________________________________________________________________
>
>
>
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at isc.org
More information about the bind-users
mailing list