Re: DNS zone transfer

From: Deus, Attonbitus (Thorat_private)
Date: Mon Jun 10 2002 - 10:59:22 PDT

Next message: Valdis.Kletnieksat_private: "Re: DNS zone transfer"

Previous message: Eric Monti: "Re: DNS zone transfer"
In reply to: Ed Schmollinger: "Re: DNS zone transfer"
Next in thread: Frank Knobbe: "Re: DNS zone transfer"
Next in thread: Brad Bemis: "RE: DNS zone transfer"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

At 07:02 AM 6/10/2002, Ed Schmollinger wrote:

> >       They can't filter port 53/tcp if the are authoritative for any 
> domains.
> > Support for TCP queries is not optional.
>
>No, they can't filter port 53/tcp if they expect zone transfers or large
>responses to work.

Or any DNS query from an Exchange2000 box- IIRC, Ex2k uses TCP 53 for *all* 
DNS queries regardless of size.

AD



-----BEGIN PGP SIGNATURE-----
Version: PGP 7.1

iQA/AwUBPQTo+ohsmyD15h5gEQLQygCfRSX+PaIdm8tDA9oq3XGiyLnJUA4AoKdk
k2GOwN7DPJFT/UPSXxIFd2O3
=gmSj
-----END PGP SIGNATURE-----

Next message: Valdis.Kletnieksat_private: "Re: DNS zone transfer"
Previous message: Eric Monti: "Re: DNS zone transfer"
In reply to: Ed Schmollinger: "Re: DNS zone transfer"
Next in thread: Frank Knobbe: "Re: DNS zone transfer"
Next in thread: Brad Bemis: "RE: DNS zone transfer"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Jun 10 2002 - 11:51:28 PDT