If traffic is passing through, then you need to open up the port. You'll know which way you need to open it if you see blocked connections in your log. If you don't see them and DNS is working fine, then you're cool.
Cavell McDermott Domino Admin APW Ltd. - Texas Campus 214-343-1400 - Main 214-355-2022 - Direct 214-341-9950 - Fax http://www.apw.com <mikesub@kjtechn ology.com> To: <[EMAIL PROTECTED]> Sent by: cc: sonicwall-owner@ Subject: RE: [SonicWALL]- DNS set to use forwarders peake.com 04/11/2002 12:24 PM Please respond to sonicwall what forwarding does is if the internal dns cannot answer a dns request then it forwards the request to an external dns and then is supposed to get a return answer it then feeds to the internal dns client. this is done so that all the client machines don't choke your bandwidth with dns queries when the internal dns server doesn't have the answer in its cache. so do I need to open port 53 on the firewall to the internal dns server so that it can get the answer to it's queries from the external dns server? I'm not sure -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Jeff Vogt Sent: Thu, April 11, 2002 1:11 PM To: '[EMAIL PROTECTED]' Subject: RE: [SonicWALL]- DNS set to use forwarders if your dns server is answering requests for internal clients only, then you do not need to create any additional rules or open ports, the default rule already allows this outbound dns traffic. if you want your dns to answer external requests, then yes you need to allow for it. all this assuming the server is behind the firewall (not in the dmz) -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 11, 2002 10:08 AM To: [EMAIL PROTECTED] Subject: [SonicWALL]- DNS set to use forwarders do I need to open the dns port if my internal dns server (configured as a dns forwarder) is set to use my isp's dns to forward requests it cannot answer? ---------------------------------------------------------------------------------------------------------- Michael D. Plotsker Technology Consultant KJ Technology Consulting, Inc. Office: 718-575-1595 Mobile: 917-406-4215 Fax: 212-202-5013 mailto:[EMAIL PROTECTED] --- [This E-mail scanned for viruses by Declude/F-Prot Virus] =================================================================================================== To unsubscribe, send email to [EMAIL PROTECTED] In the body of the email put the following: unsubscribe sonicwall your_name The archive of this list is at http://www.mail-archive.com/sonicwall%40peake.com/
