?
Solved

WireShark:  Strange message/packet

Posted on 2007-08-03
6
Medium Priority
?
883 Views
Last Modified: 2013-12-07
WireShark:  Strange message/packet

The message says "Source IP: 10.1.1.27  Destination: 10.1.1.255   Info:  Name Query NB 163Data.Com.CN

Any idea what this means?
0
Comment
Question by:esphelpdesk
  • 3
  • 3
6 Comments
 
LVL 9

Expert Comment

by:justchat_1
ID: 19630667
Its a broadcast message requesting a lookup of that name
0
 

Author Comment

by:esphelpdesk
ID: 19637963
Why would our exchange server be doing this?  Thanks.
0
 
LVL 9

Expert Comment

by:justchat_1
ID: 19651722
The only thing that comes to mind is the possibility of that being a failed DNS lookup (http://support.microsoft.com/kb/254541)... Are there any pending (or failed) emails to one of their addresses?
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 

Author Comment

by:esphelpdesk
ID: 19717675
hmmm. still happening.

I doubt it is possible that we are sending to this address.  As an organization, we have no reason to contact a .cn address.  We get a great deal of incoming spam, however I don't see how spam should cause this.  The strange thing too, is that it never happens for any other domain name.

0
 
LVL 9

Accepted Solution

by:
justchat_1 earned 1500 total points
ID: 19720147
That is a known spam source...is it possible that anti-spam software is doing a dns lookup?
0
 

Author Comment

by:esphelpdesk
ID: 19720288
Thanks for your help.  I found it in the queue of the mail server.  
0

Featured Post

Veeam and MySQL: How to Perform Backup & Recovery

MySQL and the MariaDB variant are among the most used databases in Linux environments, and many critical applications support their data on them. Watch this recorded webinar to find out how Veeam Backup & Replication allows you to get consistent backups of MySQL databases.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many network operators, engineers, and administrators do not take several factors into consideration when troubleshooting network throughput and latency issues.  They often  measure the throughput by performing a measurement  by transferring a large…
Network ports are the threads that hold network communication together. They are an essential part of networking that can be easily ignore or misunderstood, my goals is to show those who don't have a strong network foundation how network ports opera…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses
Course of the Month17 days, 12 hours left to enroll

831 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question