This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

dns and packet filter

hello all

asl version is: 1.930

i tried to transfer my primary zone from dmz (192.168.x.x) to the dns-server (official ip-adress) at my isp, wehre the secondary zone is hostet.
Masquerading and snat rule is set.

following rule works:
DMZ_NET/ANY/ANY/ALLOW

but if i want to restrict to:
DMZ_NET/DNS/ANY/ALLOW

the zonetransfer does not work.
dns is static defined as tcp/udp 1024:65535 53

is there another port to open for zonetransfer? dns server are both win nt 4.

thanks a lot in advance
eldorado

This thread was automatically locked due to age.

0 Simon Shaw over 23 years ago

Try defining DNS as 0:65535 tcp/udp 53

I had problems with DNS too.. But in my case, name resolution.
Cancel
Vote Up 0 Vote Down

Cancel
0 eldorado over 23 years ago in reply to Simon Shaw

hello shawn

thanks for helping.
that was the solution.

thanks again
eldorado
Cancel
Vote Up 0 Vote Down

Cancel