DNSSEC and ISAKMP?
Paul Wouters
paul at xelerance.com
Fri Apr 16 16:34:25 UTC 2010
On Fri, 16 Apr 2010, Deny IP Any Any wrote:
> Do I need to allow UDP/500 packets (ISAKMP) to my bind DNS servers for DNSSEC?
>
> I've been seeing a lot of UDP/500 attempts from the general internet
> to my public DNS servers, and can't figure out why. The Wikipedia page
> for DNSSEC doesn't mention anything about ISAKMP or VPN tunnels.
In general, I've seen an increase in udp 500 backscatter. It is not
specific to you or dns servers.
Paul
More information about the bind-users
mailing list