nanog mailing list archives

Re: Open Resolver Problems

From: Mikael Abrahamsson <swmike () swm pp se>
Date: Mon, 1 Apr 2013 20:33:36 +0200 (CEST)

On Mon, 1 Apr 2013, Valdis.Kletnieks () vt edu wrote:

You're sending queries, not replies. That's why DPI is needed to do theblocking, rather than just by port.


What queries are sourced from port 53 nowadays?

I'd imagine it's pretty safe to block Internet->customer UDP/53 packets.

--
Mikael Abrahamsson    email: swmike () swm pp se

Current thread:

Re: Open Resolver Problems, (continued)
- - - Re: Open Resolver Problems Owen DeLong (Apr 01)
    - Re: Open Resolver Problems Dobbins, Roland (Apr 01)
    - Re: Open Resolver Problems Paul Ferguson (Apr 01)
    - Re: Open Resolver Problems Dobbins, Roland (Apr 01)
    - Re: Open Resolver Problems Dobbins, Roland (Apr 01)
    - RE: Open Resolver Problems Jamie Bowden (Apr 02)
- Re: Open Resolver Problems Brian Dickson (Apr 01)
- Re: Open Resolver Problems Jay Ashworth (Apr 01)
  - Re: Open Resolver Problems Valdis . Kletnieks (Apr 01)
    - Re: Open Resolver Problems Jay Ashworth (Apr 01)
    - Re: Open Resolver Problems Mikael Abrahamsson (Apr 01)
    - Re: Open Resolver Problems John Kristoff (Apr 02)
    - Re: Open Resolver Problems Joe Abley (Apr 02)
    - Re: Open Resolver Problems John Kristoff (Apr 02)
    - Re: Open Resolver Problems Jerry Dent (Apr 03)
    - Re: Open Resolver Problems Joe Abley (Apr 03)
    - Re: Open Resolver Problems Jay Ashworth (Apr 03)
    - Re: Open Resolver Problems Joe Abley (Apr 03)
    - Re: Open Resolver Problems Jerry Dent (Apr 03)
  - Re: Open Resolver Problems Joe Abley (Apr 01)