DNS zone transfers are done between two DNS servers. But mostly we use DNS for name resolution only which uses UDP port 53. If the task is not specific then it's should a proctor's question.
With regards Kings On Mon, Mar 12, 2012 at 10:12 AM, Kamran Shakil <[email protected]>wrote: > > DNS = regular DNS resolutions = UDP 53 > > DNS = zone transfers (happen between DNS servers themselves ) = TCP 53 . > > For exam , the question should be clear or you can ask the proctor. > > Since it is security CCIE lab group, i would advice to define both tcp and > udp, as firewall and IPS are involved, hope you can think of possible > variations to the questions as well ! > > good day! > > > > Kamran Shakil > Technical Consultant > P.O. Box: 198 Ruwi - Postal Code : 112 , Muscat , Oman > T: +968 2416 1111 > F: +968 2416 1100 > M: +968 9808 4652 > E-mail: [email protected] > > "MDS Oman is a Part of the Midis Group" > > This e-mail contains confidential information belonging to the issuing > party and is intended solely for the > > addressees. The unauthorized disclosure, use, dissemination or copying > (either whole or partial) of this e-mail, > > or any information it contains, is prohibited. E-mails are susceptible to > alteration and their integrity cannot be > > guaranteed. The issuing party shall not be liable for this e-mail if > modified or falsified. > > > > -----Original Message----- > From: [email protected] on behalf of Eugene Pefti > Sent: Mon 3/12/2012 2:48 AM > To: [email protected] > Subject: [OSL | CCIE_Security] Ports for DNS traffic > > Guys, > Just a generic question. Would it be prudent to include a TCP port 53 as > well if the question in the task asks about DNS traffic to be allowed > through the firewall ? Or we should assume that hosts behind the firewall > will do only UDP based queries ? > > Eugene > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > Are you a CCNP or CCIE and looking for a job? Check out > www.PlatinumPlacement.com >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
