republican-creole
Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsJob BoardISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » The Site » Old Forums » Kerio - Tiny Support » [Kerio 2.x] Broaden Primary DNS Server rule?
Search Topic:
Uniqs:
164		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Links: ·Forum Guidelines ·Kerio/Tiny pre-3.x FAQ ·BBR Security Forum ·Security FAQ
AuthorAll Replies

MaxBuffer

join:2007-04-03

[Kerio 2.x] Broaden Primary DNS Server rule?

Hey Folks,

Years after a trouble-free transition from other firewalls to Kerio 2.1.5 - with BZ's Default Replacement Final Set and a 56k connection - I finally have something to talk about. Recently I noticed log entries indicating UDP connection attempts to Port 53 within the range of my DNS provider but not specifically what was assigned to me at start-up. The log also indicates that these UDP connections are searching for ports well outside the 1024-5000 range of BZ's Primary DNS Server rule.
What got my attention was that my connection was breaking - usually when I clicked an external link on a web page. A call to my providers tech staff resulted in a helpful but vague hint as to cause. I was informed by that a few months ago my IP address had been changed - possibly due to an "equipment adjustment" of some kind. I hesitate to alter the Primary DNS Server rule without support - or a clearly defined problem - especially if this issue might be resolved by finding another service provider.

Thanks for your time,
MaxBuffer
to forum · permalink · 2007-05-04 16:17:03 · (locked)

ghost16825
Use security metrics
Premium
join:2003-08-26

 A screenshot snippet of your ruleset (with certain values scrubbed if you prefer) and the relevant parts of your logs (both the incoming port 53 attempts and after what happens when you click on a link) would be helpful in giving a clearer picture of what's happening.

So, if it's possible, please post these - I'm sure your problem will be solved quicker that way.
--
09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0 (Yes, I know you've seen this before)
to forum · permalink · 2007-05-05 05:15:44 · (locked)
Forums » The Site » Old Forums » Kerio - Tiny Support

Tuesday, 02-Dec 13:12:15 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 9 years online! © 1999-2008 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [101] AT&T Metered Billing Trial Hits Second Market
· [80] UDP BitTorrent Will Destroy The Interwebs!
· [59] Comcast Tries To Slow Verizon's Philly Entry
· [52] EFF Challenges Telecom Immunity
· [17] FCC To Vote On Free National Wireless Broadband
· [16] Mega-ISPs, Consumer Advocates Demand Broadband Plan
· [15] Clearwire May Slow WiMax Build
· [15] Cablevision Bumps HD Count To 68
· [13] Hawaii Telecom Files For Bankruptcy
· [8] Embarq Rejected Higher Offer
Most people now reading
· Is this a good thing for the net? [news,99366]
· [Rant] Bestbuy receipt checker [Rants, Raves, & Praise]
· Coalition Government Possible? [TekSavvy]
· [Connectivity] Union NJ problems [Comcast HSI]
· Java SE Runtime Environment (JRE) 6 Update 11 [Security]
· Wow. TV service canceled automagically overnight. [Verizon FIOS TV]
· [WotLK] New Hunter Macros [World of Warcraft]
· Level 80 PVP gear info? [World of Warcraft]
· Notice, new uTorrent Alpha may be able to evade throttling [TekSavvy]