udp port 4932

Mark_Andrews at isc.org Mark_Andrews at isc.org
Fri Jan 31 11:09:02 UTC 2003

> Dear all,
> I noticed that our dns server send many query's to other name servers using 
> source port 4932 and destination port 53, but the problem is that those name 
> servers reply to my dns server with source port 53 and destination udp 
> 4932,as sequence udp port is denied on my firewall.

	Firstly why are you allowing out queries for which you won't
	allow reply traffic to?  It results in other machines being
	pounded.  I would be fixing your firewall so that you only allow
	out traffic for which you will accept replies.
> Does anybody know about this?

	See query-source, notify-source and transfer-source.
> Thanks
> _________________________________________________________________
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark.Andrews at isc.org

More information about the bind-users mailing list