tcp/udp, clarification please

Barry Margolin barmar at genuity.net
Wed Oct 10 18:35:40 UTC 2001


In article <9q22d1$nl3 at pub3.rc.vix.com>,
Michael Kjorling  <michael at kjorling.com> wrote:
>I can't belive so many people want to "secure" their DNS servers by
>only allowing UDP... it causes major trouble and at the _very_ least

Believe it.

>serious delays if the response is too big to fit into a single UDP
>packet and TCP is blocked.

It's very unlikely that the sites that block UDP would ever generate a
response that exceeds 500 bytes.

-- 
Barry Margolin, barmar at genuity.net
Genuity, Woburn, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.


More information about the bind-users mailing list