firewall config....what to open....tcp or udp port 53?

phn at phn at
Wed Oct 23 14:29:55 UTC 2002

Elias <elias at> wrote:
> Hi guys,

> DNS queries are done via UDP port 53 only right? 

I want to completely block all zone transfer request, so can I block tcp port 53 on my firewall? Or do i still need to open that port? Thanks.

Yes, you will ned both UDP and TCP/53

zonetransfer is blocked via the allow-transfer{} directive.

> -- Attached file included as plaintext by Ecartis --

> ----------------------------------------- (on inetxys)

> email-body was scanned and no virus found
> email-body was scanned and no virus found
> ---------------------------------------------------------

Peter Håkanson         
        IPSec  Sverige      ( At Gothenburg Riverside )
           Sorry about my e-mail address, but i'm trying to keep spam out,
	   remove "icke-reklam" if you feel for mailing me. Thanx.

More information about the bind-users mailing list