How to stop ActiveDirectory Requests on DNS Server ?
Cricket Liu
cricket at menandmice.com
Mon Nov 25 18:02:56 UTC 2002
Xavier wrote:
> Thnks a lot Cricket for your answer.
> Unfornutaly, i'm seeing thousands of differents requests..
> i was wondering if could filter _ldap_ or _kerberos_ requests
> directly...
>
> Is it dangerous to filter SRV queries ? or allow only non _ldap_ or
> _kerberos_ SRV queries ?
The number of queries you're receiving isn't important. If they're all
in the FooAgain zone, you can answer them all by setting up a
FooAgain zone. If the FooAgain zone is a real zone, then you're
presumably already answering these queries (negatively).
There's no way to filter out specifically SRV queries.
cricket
Men & Mice
DNS Software, Training and Consulting
www.menandmice.com
The DNS and BIND Cookbook, available now!
http://www.oreilly.com/catalog/dnsbindckbk/
More information about the bind-users
mailing list