Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

DNS Ports?

Status
Not open for further replies.
chmilz

chmilz

Programmer
Jan 10, 2001
94
CA
Hi All,

I was just wondering if DNS uses any ports other 53 to communicate with other DNS Servers?

Here is my problem. Our organization has two external DNS Servers. One is currently sitting behind our firewall and the other is currently sitting in the DMZ.

We would like these two DNS Servers to replicate DNS information back and forth with each other but for some reason they can't connect to each other. We have Port 53 Open on the firewall (TCP And UDP) and still nothing.


I am wondering if I am missing something... any help is greatly appreciated and if you need any more info I can provide it.

Thanks!
 
Sort by date Sort by votes
The replies are sent on UDP ports 1022 and up, and they will change with each response. The queries stay at UDP port 53, only the replies change.

Glen A. Johnson
"Give the laziest man the hardest job and he'll find the easiest way to do it."

Want to get great answers to your Tek-Tips questions? Have a look at FAQ219-2884
 
Upvote 0 Downvote
Glen, I am currently setting up something similar to what chmilz describes. What you mention is for the DNS query/reply flow. But to allow zone xfers through the firewall ... should any specific TCP port be opened?
Thanks a lot!

Jose Luis Martin Cenjor, CCNA, CCNP
HP Global Technology Solutions
 
Upvote 0 Downvote
To allow zone transfers from your firewall to an outside DNS server you will need to allow TCP53. If you allow UDP and TCP 53 to your firewall then everything should work.

If this does not work then your problem is most likley down to the DNS configuration, not the firewall.

Chris.


**********************
Chris Andrew, CCNA, CCSA
chris@iproute.co.uk
**********************
 
Upvote 0 Downvote
Try opening the other ports and testing it. If iproute is correct, then the problem will not be solved. I don't know what you're using for a firewall , so I can't really say. I can't find anything else. Good luck.

Glen A. Johnson
If you're from Northern Illinois/Southern Wisconsin check out Tek-Tips in Chicago, Illinois Forum.

Want to get great answers to your Tek-Tips questions? Have a look at FAQ219-2884
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

KenMeans
  • Locked
  • Question
DNS Issues with wireless router behind Atlantic Broad band Business Modem
Replies
0
Views
5K
KenMeans
KenMeans
alpha76
  • Locked
  • Question
Advice on DNS setup/configuration
Replies
3
Views
6K
technome
technome
tbright
  • Locked
  • Question
DNS reverse lookup errors: zone 1.168.192.in-addr.arpa/IN: has no NS records
Replies
1
Views
6K
tbright
tbright
Richard Carter
  • Locked
  • Question
Set up BIND on DNS server for local home server
Replies
0
Views
5K
Richard Carter
Richard Carter
rvirene
  • Locked
  • Question
MS DNS / Powershell Script Question
Replies
2
Views
5K
rvirene
rvirene

Part and Inventory Search

Sponsor

Back
Top