Re: [m0n0wall] Are TCP DNS queries possible?

From:	Steve Yates <steve at teamITS dot com>
To:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] Are TCP DNS queries possible?
Date:	Tue, 13 Sep 2005 17:52:53 -0500

FWIW, it seems that here with 1.2b9, m0n0wall's DNS forwarding
responds "sometimes" for TCP queries using nslookup as mentioned in the
previous MS technote ("set vc").  If it does, it seems to take a long
time, like 1-2 minutes...which means probably the ones that don't work
are simply timing out since they take longer.  When using "set novc" the
query responds virtually instantly.  And yes I'm using new hostnames so
they aren't cached.

	And during this time, Chris, the firewall is dropping all the
retry packets, as designed.  :)

 - Steve Yates
 - ITS, Inc.
 - Mary had a little RAM -- only about a MEG or so.

~ Taglines by Taglinator 4 - www.srtware.com ~