Chris Buechler wrote:
And it does recursive queries, does not rely on upstream servers? Are
you running with static port enabled? That's the only way your source
ports aren't going to be randomized, assuming the server is NATed and
not just firewalled. Static port disables the source port
randomization. This without question works as described.
Yes for internal hosts, I do recursive lookups.
Shure, wan incoming port tcp/udp 53 is NAT'ed to the Server in DMZ.
But also this is identical in both firewall setups dd-wrt/pfSense
And I think it is not really a big problem as long the transaction ID's
are really good random.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
