Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

With TCP/IP Filtering enabled, can no longer query DNS

Status
Not open for further replies.

RadioActiveLamb

IS-IT--Management
Aug 14, 2002
30
US
On 2000 Server, I have disabed "Client for Networks" and "File and Printer Sharing...". I've only enabled TCP/IP. The purpose of this server is a DNS (primary and secondary), Web server, email server and MS Gamevoice Server.

These are the ports I am allowing inbound:

TCP
21 - Telnet
25 - SMTP
53 - DNS
80 - HTTP
110 - POP3

UDP
53 - DNS
6502 - Netop
59110 - MS Gamevoice



In-bound DNS is working fine. Outbound is not. IE is unable to resolve names, and the secondary DNS cannot sync with the public primaries. The mail server (Mdaemon) cannot querry DNS either. Instead, I am having it push all outbound email to the ISP's mail server until I can fix the DNS query problem. Nothing appears in the system log related to this.

I have opted-out of using a software firewall. I tried Symantec's and ZoneAlarm's, but found them to make the server unstable. Instead, I'm using the built-in TCP/IP Filtering. It works well, except that the built-in DNS client cannot successfully query names. I am stumpped, since I have the right ports open. Also, the filtering is only effective with inbound ports. It isn't supposed to filter outbound traffic. I've searched the group and found that several people have a similar problem, but nobody has a solution posted.
Jeff Lamb
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top