MaxBuffer
join:2007-04-03
| [Kerio 2.x] Broaden Primary DNS Server rule?
Hey Folks,
Years after a trouble-free transition from other firewalls to Kerio 2.1.5 - with BZ's Default Replacement Final Set and a 56k connection - I finally have something to talk about. Recently I noticed log entries indicating UDP connection attempts to Port 53 within the range of my DNS provider but not specifically what was assigned to me at start-up. The log also indicates that these UDP connections are searching for ports well outside the 1024-5000 range of BZ's Primary DNS Server rule.
What got my attention was that my connection was breaking - usually when I clicked an external link on a web page. A call to my providers tech staff resulted in a helpful but vague hint as to cause. I was informed by that a few months ago my IP address had been changed - possibly due to an "equipment adjustment" of some kind. I hesitate to alter the Primary DNS Server rule without support - or a clearly defined problem - especially if this issue might be resolved by finding another service provider.
Thanks for your time,
MaxBuffer |
|
ghost16825
Use security metrics
Premium
join:2003-08-26
| A screenshot snippet of your ruleset (with certain values scrubbed if you prefer) and the relevant parts of your logs (both the incoming port 53 attempts and after what happens when you click on a link) would be helpful in giving a clearer picture of what's happening.
So, if it's possible, please post these - I'm sure your problem will be solved quicker that way.
--
09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0 (Yes, I know you've seen this before) |
|
