|Summary:||Bind queries root nameservers on high ports|
|Product:||[Retired] Red Hat Linux||Reporter:||rbharani|
|Component:||bind||Assignee:||Bernhard Rosenkraenzer <bero>|
|Status:||CLOSED DEFERRED||QA Contact:|
|Fixed In Version:||Doc Type:||Bug Fix|
|Doc Text:||Story Points:||---|
|Last Closed:||1999-09-02 16:58:11 UTC||Type:||---|
|oVirt Team:||---||RHEL 7.3 requirements from Atomic Host:|
|Cloudforms Team:||---||Target Upstream Version:|
Description rbharani 1999-04-12 22:17:20 UTC
Greetings, I believe this to be the case with both bind 8 and bind 4, when running as a caching nameserver. Linux defaults to using high ports when querying the root nameservers, as described in the DNS HOWTO. The problem comes when Linux boxes are behind firewalls that deny connectionless traffic on high ports from the outside - in other words, the firewalls filter out the DNS response from the root nameservers. Other operating systems (other *nixes too) make these queries via UDP to and from 53. This issue is causing us some problems in my enterprise, due to the supurrious firewall hits we're getting. Can the default behavior please be modified such that these queries go out on UDP 53. Thanks!
Comment 1 Jeff Johnson 1999-09-02 16:58:59 UTC
This isn't going to be fixed in Red Hat 6.1. I'm preserving the report by resolving to REMIND.