DNS = regular DNS resolutions = UDP 53 DNS = zone transfers (happen between DNS servers themselves ) = TCP 53 .
For exam , the question should be clear or you can ask the proctor. Since it is security CCIE lab group, i would advice to define both tcp and udp, as firewall and IPS are involved, hope you can think of possible variations to the questions as well ! good day! Kamran Shakil Technical Consultant P.O. Box: 198 Ruwi - Postal Code : 112 , Muscat , Oman T: +968 2416 1111 F: +968 2416 1100 M: +968 9808 4652 E-mail: [email protected] "MDS Oman is a Part of the Midis Group" This e-mail contains confidential information belonging to the issuing party and is intended solely for the addressees. The unauthorized disclosure, use, dissemination or copying (either whole or partial) of this e-mail, or any information it contains, is prohibited. E-mails are susceptible to alteration and their integrity cannot be guaranteed. The issuing party shall not be liable for this e-mail if modified or falsified. -----Original Message----- From: [email protected] on behalf of Eugene Pefti Sent: Mon 3/12/2012 2:48 AM To: [email protected] Subject: [OSL | CCIE_Security] Ports for DNS traffic Guys, Just a generic question. Would it be prudent to include a TCP port 53 as well if the question in the task asks about DNS traffic to be allowed through the firewall ? Or we should assume that hosts behind the firewall will do only UDP based queries ? Eugene _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
