Restricting TCP / 53 on the firewall level
Kristin Gorman
kgorman at book.com
Mon Mar 25 17:56:49 UTC 2002
Does anyone see any issues with restricting TCP/53 on a firewall in front of
your DNS server? There would be no legitimate query that would warrant an
answer larger than 512 bytes. Zone transfers are done internally amongst
machines behind the firewall.
I've seen postings that say it is not wise to do, but I cannot see any
legitimate reasons not to.
Thanks in advance,
Kristin Gorman
Platform Engineer
Barnes&Noble.com
212-414-6627
More information about the bind-users
mailing list