[ previous ] [ next ] [ threads ]
 
 From:  Melvin <melvin at sleepydragon dot net>
 To:  Robert Goodyear <me at jrob dot net>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Are TCP DNS queries possible?
 Date:  Tue, 13 Sep 2005 17:06:45 -0400
Robert Goodyear wrote:

>
> On Sep 13, 2005, at 12:09 PM, Neil A. Hillard wrote:
>
>> Hi,
>>
>>
>>> I need m0n0 to respond to TCP DNS queries. Does anyone know if  
>>> this  is
>>> possible or if there's a workaround to permit this functionality?
>>>
>> Just checked on mine and it does respond to TCP queries (with the
>> default LAN can access anything rule):
>>
>> [root]# host -T www.google.com 192.168.1.1
>> Using domain server:
>> Name: 192.168.1.1
>> Address: 192.168.1.1#53
>> Aliases:
>>
>> www.google.com is an alias for www.l.google.com.
>> www.l.google.com has address 66.249.93.104
>> www.l.google.com has address 66.249.93.99
>>
>>
>> Confirmed this with a packet capture, too.  This is on 1.2b9.
>
>
>
> I can nslookup just fine; it's the MS SMTP service that's won't talk  
> UDP for me. Or so it seems. If on these W2K boxes I use an upstream  
> DNS, it works fine. Switching to m0n0 DNS breaks only the SMTP  
> lookups; all other services are fine.
>
>
>
The MS SMTP starts with TCP queries but should fall back to UDP after 
failure.  I'd have a search on the MS KB for details.  I'm not sure 
whether that started in 2000 or 2003 server.  It would be reasonable 
that it was configurable as well, but then again we are talking MS. :)

HTH
Melvin