Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Windows DNS and Port Ranges

Hey all,

When ever I restart one of my Win 2000 dns servers I have to open a port additional to 53 for root servers to send responses to. Currently I am using a firewall other than pix, but the Pix is mounted and almost configured. Is there A way I can specify a range of ports to be used for DNS packets. It appears to be anywhere from port 1031-1039.

Thanks

Matt

  • Other Security Subjects
1 REPLY
New Member

Re: Windows DNS and Port Ranges

Use range and a port range to permit or deny access to only those ports named in the range. For example, use range 10 1024 to permit or deny access only to ports 10 through 1024. All other ports are unaffected.

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref/ab.htm#1067755

specifically, look at access-lists and access-groups

264
Views
0
Helpful
1
Replies
This widget could not be displayed.