[162045] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Open Resolver Problems

daemon@ATHENA.MIT.EDU (Mikael Abrahamsson)
Mon Apr 1 14:38:21 2013

Date: Mon, 1 Apr 2013 20:33:36 +0200 (CEST)
From: Mikael Abrahamsson <swmike@swm.pp.se>
To: Valdis.Kletnieks@vt.edu
In-Reply-To: <8720.1364840876@turing-police.cc.vt.edu>
Cc: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org

On Mon, 1 Apr 2013, Valdis.Kletnieks@vt.edu wrote:

> You're sending queries, not replies.  That's why DPI is needed to do the 
> blocking, rather than just by port.

What queries are sourced from port 53 nowadays?

I'd imagine it's pretty safe to block Internet->customer UDP/53 packets.

-- 
Mikael Abrahamsson    email: swmike@swm.pp.se


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[162045] in North American Network Operators' Group

Re: Open Resolver Problems

daemon@ATHENA.MIT.EDU (Mikael Abrahamsson)Mon Apr 1 14:38:21 2013

daemon@ATHENA.MIT.EDU (Mikael Abrahamsson)
Mon Apr 1 14:38:21 2013