Dig: specifying a source port

Barry Margolin barmar at alum.mit.edu
Wed Aug 4 23:51:01 UTC 2004


In article <cerbk5$u2k$1 at sf1.isc.org>,
 Joseph S D Yao <jsdy at center.osis.gov> wrote:

> On Wed, Aug 04, 2004 at 07:24:58PM +0100, Jim Reid wrote:
> > >>>>> "Jason" == Jason Richards <jrichards at gci.com> writes:
> > 
> >     Jason> I need to be able to specify the source port (since bind is
> >     Jason> configured with transfer source port 53). I know this isn't
> >     Jason> natively available, but I found a patch online for dig
> >     Jason> v9.2.2 and have seemed to be able to make it work under
> >     Jason> 9.2.3.
> > 
> > Insisting zone transfers requests use a specifc port number is dumb.
> > Please don't do that.
> 
> Some firewalls [;-(] still require that the source port be 53 as in the
> ancient versions of BIND!  While this would normally be useless, if
> that is the case in his situation, it would be necessary.

No version of BIND *ever* used TCP source port 53 for zone transfers.  
They only did this for recursive queries over UDP.

-- 
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***


More information about the bind-users mailing list