To:
Matt Crawford <crawdad@fnal.gov>
cc:
Alex Kamantauskas <alexk@tugger.net>, Mats Dufberg <dufberg@nic-se.se>, <dnsop@cafax.se>
From:
Alex Kamantauskas <alexk@tugger.net>
Date:
Tue, 3 Apr 2001 12:10:31 -0400 (EDT)
In-Reply-To:
<200104031602.LAA03765@gungnir.fnal.gov>
Sender:
owner-dnsop@cafax.se
Subject:
Re: Strange behavior from resolvers?
>>> I have a guess, but I haven't tested it yet. Something between the >>> internet and those two servers ns1/2.obol-net.net is refusing packets >>> with UDP source port 53. >> >> If that were the case, than all queries would fail, but an SOA query >> still works: >> >> root/ns1:/ # dig obol-net.net soa >> ;; ANSWER SECTION: >> obol-net.net. 1D IN SOA ns1.obol-net.net. > > No, no. *source* address. Of packets coming from the *outside*. > It would be a goofy thing to do, but it fits the observations. > Source packets generally wouldn't be coming from port 53, iirc. The destination would be port 53, but the source would be a higher unpriveleged port. -- /ak