• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1197
  • Last Modified:

Large amount of DNS event 5501 in event logs

I've got a 2000 Domain controller with a lot of 5501 events happening. The bad packets are coming from a particular IP, based in Austria.
I realise that the event is just informational, but I'm concerend that this one IP is maliciously sending malformed packets, and it's slowing down my DSN server.
Can anyone give me a good way to deal with it?
0
lineonecorp
Asked:
lineonecorp
  • 2
2 Solutions
 
Christopher MartinezCommented:
Do you have a ACL/IPSec setup? If so i would make sure that this IP is filtered to ignore all request.

If you would lik emore info on doing this i suggest this article
http://support.microsoft.com/kb/813878
Good luck!
0
 
DrDave242Commented:
If the packets are all coming from one IP outside your network, and you have no idea what that IP is or why it would be sending those packets, you should consider blocking it at your firewall.  You should also consider upgrading that DC, as Windows 2000 reached end-of-life in July, so MS will no longer provide support for it.

0
 
lineonecorpAuthor Commented:
I will read the article and get back to you.
0
 
lineonecorpAuthor Commented:
Thanks for the suggestions
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now