refused query on non-query socket
Jim Reid
jim at rfc1035.com
Sat May 15 17:10:44 UTC 2004
>>>>> "MJ" == MJ <php at cyberia.net.sa> writes:
MJ> We are an ISP and using Bind 8.2.2-P5 on Solaris 8. Since long
MJ> time we are getting following error messages.
MJ> refused query on non-query socket from [212.x.x.x].53
BIND 8.2.2-P5 is very old and has a number of security holes. Upgrade.
The current release of BIND8 is 8.4.4. Though you really should be
using BIND9.
The error message is saying that something at IP address 212.x.x.x --
why did you hide its address? -- is sending queries to the socket your
server uses to make queries. Whatever is generating that traffic is
badly broken.
MJ> We don't have any problem in DNS operations but few of our
MJ> clients with MS Exchange servers some times complaints that
MJ> they have intermittent DNS resolution problem which causes
MJ> delays in their outgoing emails. usually they got timeout
MJ> errors. I am afraid that is there any link in between this
MJ> timeout complaints and the refused query error mention above.
This error message may or may not have any bearing on the problem you
describe. It depends. Perhaps your M$ boxes are sending their DNS
queries to this 212.x.x.x which then sends them to the wrong socket on
your name server?
More information about the bind-users
mailing list