Need suggestion about firewall and BIND 8.3.3
phn at icke-reklam.ipsec.nu
phn at icke-reklam.ipsec.nu
Tue Jul 16 09:19:58 UTC 2002
Michael AIG <mike_aig at hotmail.com> wrote:
> Thanks for the info!
> How about the zone transfer from primary to secondary?
> Thanks again in advance!
53 TCP will cover that
Whenever dealing with packetfilters i find it convenient to
log all blocked packets, and to examine the log when trying
to figure out when something does not work as expected.
Peter h
> Regards,
> Mike
>>From: "David Botham" <dns at botham.net>
>>To: "'Michael AIG'" <mike_aig at hotmail.com>, <bind-users at isc.org>
>>Subject: RE: Need suggestion about firewall and BIND 8.3.3
>>Date: Mon, 15 Jul 2002 09:41:48 -0400
>>
>>Sorry, mis-read that last post.
>>
>>DNS: UDP=53, TCP=53
>>SSH: TCP=22
>>FTP: TCP=21 (control) and 20 (data)
>>
>>FTP may be a little tricky to handle with a packet filter. A more
>>secure option would be to tunnel FTP through SSH. Then, you would not
>>have to worry about filtering FTP, only SSH and DNS.
> _________________________________________________________________
> Send and receive Hotmail on your mobile device: http://mobile.msn.com
--
Peter Håkanson
IPSec Sverige ( At Gothenburg Riverside )
Sorry about my e-mail address, but i'm trying to keep spam out,
remove "icke-reklam" if you feel for mailing me. Thanx.
More information about the bind-users
mailing list