Search:  

 
theme to white backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » The Site » Old Forums » Kerio - Tiny Support » [Kerio 2.x] Broaden Primary DNS Server rule?
Uniqs:
249		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Links: ·Forum Guidelines ·Kerio/Tiny pre-3.x FAQ ·BBR Security Forum ·Security FAQ
MaxBuffer

join:2007-04-03

[Kerio 2.x] Broaden Primary DNS Server rule?

Hey Folks,

Years after a trouble-free transition from other firewalls to Kerio 2.1.5 - with BZ's Default Replacement Final Set and a 56k connection - I finally have something to talk about. Recently I noticed log entries indicating UDP connection attempts to Port 53 within the range of my DNS provider but not specifically what was assigned to me at start-up. The log also indicates that these UDP connections are searching for ports well outside the 1024-5000 range of BZ's Primary DNS Server rule.
What got my attention was that my connection was breaking - usually when I clicked an external link on a web page. A call to my providers tech staff resulted in a helpful but vague hint as to cause. I was informed by that a few months ago my IP address had been changed - possibly due to an "equipment adjustment" of some kind. I hesitate to alter the Primary DNS Server rule without support - or a clearly defined problem - especially if this issue might be resolved by finding another service provider.

Thanks for your time,
MaxBuffer
permalink · 2007-05-04 16:17:03 · Print ·
ghost16825
Use security metrics
Premium
join:2003-08-26

Re: [Kerio 2.x] Broaden Primary DNS Server rule?

A screenshot snippet of your ruleset (with certain values scrubbed if you prefer) and the relevant parts of your logs (both the incoming port 53 attempts and after what happens when you click on a link) would be helpful in giving a clearer picture of what's happening.

So, if it's possible, please post these - I'm sure your problem will be solved quicker that way.
--
09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0 (Yes, I know you've seen this before)
permalink · 2007-05-05 05:15:44 ·
Forums » The Site » Old Forums » Kerio - Tiny Support

Thursday, 03-Dec 11:36:16 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [162] Comcast Releasing Promised Usage Meter
· [119] Avast Antivirus Has Gone Mad
· [103] Graduate Student Unveils Sprint's GPS Sharing With Feds
· [80] Latest Consumer Reports Survey Not Kind To AT&T
· [70] Baltimore To Ban Lazy Cable Installs
· [63] Broadband Killed The Game Console
· [55] Rogers Unveils The ISP Dream Model
· [54] Comcast Makes NBC Universal Acquisition Official
· [47] ACTA: Global Three Strikes
· [42] Cable Industry's 'Adoption Plus': Altruism Or PR Stunt?
Most people now reading
· False positive in Avast! or is it real? [Security]
· Many Sites Unreachable [Rogers]
· [TWC] Audio/Video outage in Brooklyn [Time Warner Cable TV/Voice]
· Quality/longevity of 15A 120V receptacles [Home Repair & Improvement]
· [Rant] Disrespect of PTO [Rants, Raves, and Praise]
· IMG 1.7 (IMG Updates and Discussion) [Verizon FIOS TV]
· [WotLK] Doing away w/ conquest? [World of Warcraft]
· Warrior tank seem underpowered these days [World of Warcraft]
· Windows 7 - Dell ALPS Touchpad driver [Microsoft Help]