[Possible OT]: dns id in requests
Ramnath Duggirala
ramnath802 at yahoo.com
Tue Sep 7 15:01:42 UTC 2004
Hi Barry,
Thanks a lot for your reply. I am trying to put dns
server on DMZ and the clients on the inside for a
firewall. The firewall is matching based on ids for
dns traffic and so different requests are being
treated as one for accounting...
Thank you,
-ramnath
--- Barry Margolin <barmar at alum.mit.edu> wrote:
> In article <ch7mh6$1f4a$1 at sf1.isc.org>,
> Ramnath Duggirala <ramnath802 at yahoo.com> wrote:
>
> > Hi All,
> > I have noticed that the corporate dns server is
> > sending out dns requests with same id but
> different
> > udp src port for consecutive requests. I was under
> the
> > impression that the "dns_id must be different for
> > requests from hostA to serverB as they are used to
> > match requests with responses. The udp src port
> can be
> > same for consecutive requests(this from earlier
> > discussions on bind in this forum)".
>
> Since it's using the port number to match the
> replies with requests, it
> doesn't need to distinguish them using the ID field.
> So this field is
> irrelevant for this client.
>
> Why does it matter?
>
> --
> Barry Margolin, barmar at alum.mit.edu
> Arlington, MA
> *** PLEASE post questions in newsgroups, not
> directly to me ***
>
>
_______________________________
Do you Yahoo!?
Win 1 of 4,000 free domain names from Yahoo! Enter now.
http://promotions.yahoo.com/goldrush
More information about the bind-users
mailing list