b_levitt
asked on
ISA 2006 blocking nslookup ls -d domain.com
I have a wierd problem. I've allowed zone transfers from our primary DNS server to some specific IPs. On of those IPs is a secondary DNS server that I control and is nat'd behind the same IP as my computer. Zone transfers to this secondary DNS server are working fine and transfers are being requested from that server by the external IP of the primary dns server. However when I do a nslookup to that same external IP and then "ls -d oneofourdomains.com" I get a strage response (see attached image). If I do the same nslookup command to the servers interal IP (meaning I've taken the ISA firewall out of the equation) it works as it should (I see all zones). I've tried disabling the dns filter but that didn't work. Any thoughts?
nslookup.jpg
nslookup.jpg
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
FWX_E_TCP_NOT_SYN_PACKET_D
No rule is shown so I'm still thinking this is a filter problem.