<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Consolas;
panose-1:2 11 6 9 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
pre
{mso-style-priority:99;
mso-style-link:"HTML unaprijed oblikovano Char";
margin:0cm;
margin-bottom:.0001pt;
font-size:10.0pt;
font-family:"Courier New";
color:black;}
span.StilEpote17
{mso-style-type:personal-compose;
font-family:"Calibri","sans-serif";
color:windowtext;}
span.HTMLunaprijedoblikovanoChar
{mso-style-name:"HTML unaprijed oblikovano Char";
mso-style-priority:99;
mso-style-link:"HTML unaprijed oblikovano";
font-family:"Courier New";
color:black;}
.MsoChpDefault
{mso-style-type:export-only;}
@page Section1
{size:612.0pt 792.0pt;
margin:70.85pt 70.85pt 70.85pt 70.85pt;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=HR link=blue vlink=purple>
<div class=Section1><pre><span style='font-size:12.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Hello,<br>
<br>
<o:p></o:p></span></pre><pre><span style='font-size:12.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Before I had bind-9.5.0-P2 and now I upgrade to bind-9.5.1. I readed that in bind-9.5.1 is additional support for query port randomization<o:p></o:p></span></pre>
<p class=MsoNormal><span style='font-size:12.0pt;color:#1F497D'>including
performance improvement and port range specification.<br>
<br>
But is this ok?<br>
<br>
</span><span style='font-size:10.0pt;font-family:Consolas;color:#17365D'>netstat<br>
<br>
udp 0 0
ls1.tel.net.ba:29825
203.64.139.9:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:24836
static.213-133-1:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:21124
alius.crackerjac:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:60933
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:50446
ns1.dynadot.com:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:61075 alius.crackerjac:domain
ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:21915
firewall.camping:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:18076
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:31142 crackerjack.net:domain
ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:6311
208.66.192.102:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:3369
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:36017
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:40502
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:17719
alius.crackerjac:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0 ls1.tel.net.ba:37307
189.40.238.6:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:46274
alius.crackerjac:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:11719
ns2.suspended-fo:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp 0
0 ls1.tel.net.ba:51400
ns2.suspended-fo:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:34386
alius.crackerjac:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:32600
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:20732
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:61023
bod40.i0waterfor:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:60767
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:9450
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:28270
43.72.84ae.stati:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:43630
alius.crackerjac:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:39417
alius.crackerjac:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:24569
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:24569
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>Active UNIX domain sockets (w/o servers)<br>
<br>
<br>
netstat after 5 min.<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:16525
202.153.32.6:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:8975
a.gtld-servers.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:50959
60.217.239.181:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:61714
208.72.175.3:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:37656
66.232.104.156:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:39455
79.135.181.219:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:60193
64.38.223.8:domain
ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:21540
alius.crackerjac:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:19494
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:25266
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:50355 crackerjack.net:domain
ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:20923
a.gtld-servers.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:58044
ns.kuins.kyoto-u:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:16575 crackerjack.net:domain
ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:45376
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:34372
ns1.tahoe.everyd:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0 ls1.tel.net.ba:65489
170.185.16.2:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:7506
12.154.116.35:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:56658
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0 ls1.tel.net.ba:45396
ns2.suspended-fo:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:50905
a.gtld-servers.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:3673
bod41.i0waterfor:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0 ls1.tel.net.ba:31833
64.38.223.8:domain
ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:11872
crackerjack.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:65519
alius.crackerjac:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:18549
ns1.crsnic.net:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:28023
114-32-136-127.H:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'>udp
0 0
ls1.tel.net.ba:12921
79.135.181.219:domain ESTABLISHED<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:10.0pt;font-family:Consolas;
color:#17365D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-family:Consolas;color:#17365D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-family:Consolas;color:#17365D'>As you can
see, the ports are changing, but there is always crackerjack.net every time on
differnet ports? Can I simply put this user in IP tables?<br>
In previously version bind-9.5.0-P2 there was not at all ESTABLISHED socket
from foreign users. <br>
Otherwise, My network and configuration is the same like before upgrade.<br>
Only when I upgreded to bind 9.5.1., there are now many udp socket. Is this
characteristical behaviour for bind.9.5.1?<br>
<br>
I'm going to <a href="http://www.isc.org"><span style='color:#17365D'>www.isc.org</span></a>
but I can't find this answers? Please can you answer of my question?<br>
<br>
Thanks in advance!<br>
<br>
Elysabeth<o:p></o:p></span></p>
<p class=MsoNormal><o:p> </o:p></p>
</div>
</body>
</html>