[80137] in North American Network Operators' Group
using TCP53 for DNS
daemon@ATHENA.MIT.EDU (Patrick W. Gilmore)
Tue Apr 26 12:39:38 2005
Cc: "Patrick W. Gilmore" <patrick@ianai.net>
From: "Patrick W. Gilmore" <patrick@ianai.net>
Date: Tue, 26 Apr 2005 12:39:09 -0400
To: nanog@merit.edu
Errors-To: owner-nanog@merit.edu
In the thread about ns*.worldnic.com, many people were complaining
about DNS responses/queries on TCP port 53.
At least one DoS mitigation box uses TCP53 to "protect" name
servers. Personally I thought this was a pretty slick trick, but it
appears to have caused a lot of problems. From the thread (certainly
not a scientific sampling), many people seem to be filtering port 53
TCP to their name servers.
Is this common? Does anyone have stats on this (roots, GTLDs, other
big name server farms)? Perhaps people could send what they do
personally and I can summarize for this list. (Again, not a
scientific sampling method, but better than trying to read into what
people imply in a long, and probably not-well-read thread.)
--
TTFN,
patrick
P.S. Sorry to post operational content, I know how everyone hates
that. =)
