dns clients using non-ephemeral ports
ed at alcpress.com
ed at alcpress.com
Wed Jan 10 20:46:19 UTC 2001
My firewall is configured to allow dns requests from the outside
world that use ephemeral source ports (1024-65535) and port 53.
When I check my logs, I see packets that were rejected
because they used source ports below 1024. Here
are some examples:
195.153.131.2:665
203.229.169.225:744
212.62.4.189:904
Are there resolvers or servers out there that normally do this or
have I turned away a potential attack?
Ed
More information about the bind-users
mailing list