Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1321
Views
0
Helpful
1
Replies

ACL for DNS zone transfer and querries

gmaccisco1
Level 1
Level 1

‎12-01-2006 05:26 PM - edited ‎03-11-2019 02:03 AM

Hi,

I had an ACL for allowing DNS zone transfer and DNS queries to our DNS server that was allowing TCP/Domain and not UDP on port 53. I also must note that I didn't written that rule but inheritted it.

after I added another ACL and created a pool through PDM to allow UPD, Domain and port renge 53 to 53, the query started to work.

I was wondering if selecting TCP and Domian would do the trick by itself when it comes to PIX Firewalls?

Thx,

Masood

Labels:
0 Helpful
1 Reply 1

Richard Burts
Hall of Fame
Hall of Fame

‎12-03-2006 03:47 AM

Masood

While zone transfers use TCP most DNS querries use UDP. So I would expect that a rule selecting only TCP would not work.

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card