[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] Strange TCP/IP DNS traffic
- To: Shachar Shemesh <fulldisc@xxxxxxxxxxxxxxxxxxx>
- Subject: Re: [Full-Disclosure] Strange TCP/IP DNS traffic
- From: Nicolas Rachinsky <list@xxxxxxxxxxxx>
- Date: Thu, 3 Jun 2004 18:06:40 +0200
* Shachar Shemesh <fulldisc@xxxxxxxxxxxxxxxxxxx> [2004-06-03 17:35 +0300]:
> The outbound traffic is not generated by the local bind installation,
> which was asked to bind to port 53 for outbound traffic. Also,
man named.conf:
Query Address
If the server doesn't know the answer to a question, it will query other
nameservers. query-source specifies the address and port used for such
queries. If address is * or is omitted, a wildcard IP address (
INADDR_ANY) will be used. If port is * or is omitted, a random unprivi-
leged port will be used. The default is
query-source address * port *;
Note: query-source currently applies only to UDP queries; TCP queries
always use a wildcard IP address and a random unprivileged port.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html