Eric Dawson wrote: > > Prot Src Dst Use > udp >1023 53 Client queries (sendmail, nslookup, etc ...) > udp 53 >1023 Replies to above
> Note: >1023 is for non-priv ports on Un*x clients. On other client > types, the limit may be more or less. Probably these are the only relevant ones. In your firewall, set it up to allow UDP from unpriviledged ports to port 53 on your DNS servers and the return traffic. >...there must be some way to restrict the client to a fixed set of ports... >oh well. Not really on Windows. Windows itself is limited to using ports between 1024 and 5000 for client connections (configurable through the registry), but that appies to everything, not just DNS. Jochem ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/lists.cfm?link=t:5 Subscription: http://www.houseoffusion.com/lists.cfm?link=s:5 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.5 Get the mailserver that powers this list at http://www.coolfusion.com
