Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
499
Views
0
Helpful
4
Replies

configuring DNS on firewall

Go to solution
Bruce Summers
Level 1
Level 1

‎02-27-2009 06:52 PM - edited ‎03-11-2019 07:58 AM

is it necessary to allow both UDP and TCP port 53 for accessing DNS servers through a firewall access-list?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
vikram_anumukonda
Level 3
Level 3

‎02-27-2009 07:49 PM

tcp/53 is used for zone-transfers. if you are doing just normal queries udp/53 will suffice.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
vikram_anumukonda
Level 3
Level 3

‎02-27-2009 07:49 PM

tcp/53 is used for zone-transfers. if you are doing just normal queries udp/53 will suffice.

0 Helpful

Go to solution
Bruce Summers
Level 1
Level 1
In response to vikram_anumukonda

‎02-27-2009 07:51 PM

thanks vikram.

0 Helpful

Go to solution
vikram_anumukonda
Level 3
Level 3
In response to Bruce Summers

‎02-27-2009 08:03 PM

Here is another reason why tcp/53 is used "A client can use TCP whenever it wants, and has to use TCP when the response it gets via UDP is truncated because it is too long"

0 Helpful

Go to solution
duncanm
Level 1
Level 1
In response to vikram_anumukonda

‎03-04-2009 08:49 AM

tcp/53 is also used for large transfers.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card