06-24-2002 07:07 PM - edited 02-20-2020 10:06 PM
When I check my syslog running on the PIX at facility 6, I see numerous attempts by my Microsoft DNS server, which is on my outside network, to connect to clients on the inside network via UDP port 53. The attempts are blocked by THE PIX on the outside Interface. No impact on service is detected. Anybody know what might be causing this?
06-24-2002 09:30 PM
Is the server an Active Directory server too, in which case it might be polling the clients that have registered to the dns server (thru ddns) when they accessed the server. The server could then be polling these hosts.
06-26-2002 11:52 AM
No sir,
The DNS server is running NT4.0, SP6e. I have, however, noted since posting here, that a WIN2K server on a different domain appears to be logging on anonomously to the NT4.0 DNS server. The 2000 Server is not running active directory, but it is the PDC for it's domain.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide