Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
264
Views
0
Helpful
1
Replies

Reverse DNS

csorensen
Level 1
Level 1

‎11-04-2002 02:50 PM - edited ‎03-09-2019 12:56 AM

I am experiencing email failures due to reverse dns lookups. I have the reverse lookup zones setup and they look correct. I have ports 53 ip and udp open on my PIX firewall. Everything works except reverse lookups. Am I missing something on the firewall? I also have a 3640 router inline also.

Labels:
0 Helpful
1 Reply 1

s.jankowski
Level 4
Level 4

‎11-08-2002 02:21 PM

I have a mail server on my network but I'm not too familiar with reverse dns lookups. I guess you get the desired level of security by simply doing the following:

1) Placing your mail server on the DMZ.

2) Configuring conduit to the server's ip only for port 25.

3) Using the default fixup protocol smtp 25, thus letting 'mailguard' restrict the commands alllowed to the seven listed in rfc 821.

From my viewpoint, opening port 53 is not a good idea due to the known vulnerabilities of DNS.

0 Helpful
Customers Also Viewed These Support Documents