How to stop ActiveDirectory Requests on DNS Server ?
Barry Finkel
b19141 at achilles.ctd.anl.gov
Mon Nov 25 15:44:26 UTC 2002
Xavier <xfiquet_N0_SPAM at yahoo.fr> wrote:
>I'm using a Bind 8.3.1 DNS SERVER on Solaris 2.8 Box.
>
>I have Sniffed some DNS traffic and i'm seeing lot's of requests :
>
>Standard query SRV _ldap._tcp.foo.msdcs.FooAgain
>Standard query SRV _ldap._tcp.c4ac1ec-5c9c1.domains._msdcds.FooAgainAgain
>Standard query SRV _kerberos._tcp.dc._msdcs.FooAgainAgain
>
>FooAgain, FooAgain and FooAgainAgain are LOCAL, web site, computer hostname
>;etc..
>
>I'm looking for a technical solution that disable my dns server to look up
>these request on Root Servers.
>Maybe to drop these requests or make them resolved to 127.0.0.1.
Is your DNS server a master or slave for the zone in question? If so,
then why do you want to block valid W2k queries to your nameserver?
W2k puts SRV records into DNS so that W2k clients can query those SRV
records to locate services that the clients need to use.
----------------------------------------------------------------------
Barry S. Finkel
Electronics and Computing Technologies Division
Argonne National Laboratory Phone: +1 (630) 252-7277
9700 South Cass Avenue Facsimile:+1 (630) 252-4601
Building 222, Room D209 Internet: BSFinkel at anl.gov
Argonne, IL 60439-4828 IBMMAIL: I1004994
More information about the bind-users
mailing list