Hi, Apologies because this is only partially related to gnatbox.
We have two win2kserver machines on our network which insist on making DNS queries to DNS servers not assigned to us. The other machines on our net are win98, win2kpro, and one unix box. This problem occurs only with the 2 win2kserver machines. One machine was previously configured as a domain controller with a name of abc. abc is not our registered domain name, but abc.com does exist. abc is configured to use xyz (another internal machine) for DNS service. abc is not generally used for interactive use. Somehow, abc discovered the DNS server IP addresses (the ones listed by whois) for abc.com and is using them for queries. All our machines are configured (via DHCP) to use xyz for DNS. xyz is configured to forward any DNS request it can't resolve to the external DNS servers assigned by our ISP. I can see from the logs that queries are being made to our assigned DNS servers. None of the machines on our net seem to have any problem resolving addresses, even after I implemented the block below. Additionally, xyz is, for some reason, making DNS requests to two other servers at iana.org. I've configured gnatbox to allow DNS requests to the servers assigned to us by our ISP, and to block requests to any other server. This is working without any apparent harm, but the Active Filters section of System Activity shows several thousand blocked requests daily. I guess my questions are: Is it common/acceptable for a site to make DNS queries to other than it's own assigned servers? Should I worry about it? Do I even need the block? Anyone have a clue on how to stop these boxes from doing this? Apologies if this was too off-topic, convoluted, or over/under explained. If I left out anything important, let me know and I'll provide it if I can. Thanks for any help. -- Roger Cornelius [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archive of the last 1000 messages: http://www.mail-archive.com/[email protected]
