[dns-operations] DNS Issue

WBrown at e1b.org WBrown at e1b.org
Fri Apr 26 12:46:51 UTC 2013

"Cihan SUBASI \(GARANTI TEKNOLOJI\)" <CihanS at garanti.com.tr> wrote on 
04/26/2013 08:24:01 AM:

> Also can someone explain why tcp53 should be allowed on the 
> firewalls if dns is behind a firewall?

Because your authoritative server may return a truncated response 
indicating the client should retry over TCP. 

> And why auditors do not like tcp53 open to public?

Because they do not understand the above.

Confidentiality Notice: 
This electronic message and any attachments may contain confidential or 
privileged information, and is intended only for the individual or entity 
identified above as the addressee. If you are not the addressee (or the 
employee or agent responsible to deliver it to the addressee), or if this 
message has been addressed to you in error, you are hereby notified that 
you may not copy, forward, disclose or use any part of this message or any 
attachments. Please notify the sender immediately by return e-mail or 
telephone and delete this message from your system.

More information about the dns-operations mailing list