I am trying to establish a new trust between a DNS server in a DMZ and an internal DNS server on a Microsoft network. These are 2003 Servers SP2, and the DMZ resides on a Cisco ASA 5510 firewall. The DNS servers are able to ping each other through the firewall. It is possible a TCP port is being blocked that is required to establish the trust - not sure on that. any help would be appreciated.