asked on
Port direction for zone transfer (not AD integrated)
Hi guys,
I need to forward a zone from DNS Server 1 to DNS Server 2 located in different network segments.
Can you help me to clarify what port it requires (I believe TCP 53) and what direction ? Is it the destination server (DNS Server 2) contacting the DNS Server 1 or the other way round ? or is it bi-directional ?
Thanks
I need to forward a zone from DNS Server 1 to DNS Server 2 located in different network segments.
Can you help me to clarify what port it requires (I believe TCP 53) and what direction ? Is it the destination server (DNS Server 2) contacting the DNS Server 1 or the other way round ? or is it bi-directional ?
Thanks
Windows Server 2012DNS
Last Comment
Seth Simmons
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
You will want a bidirectional rule on UDP/53 and TCP/53 for pull and notify requests if you are using notify, which you should if you want updates propagating in a timely fashion. Do you have some security concern about a point to point firewall rule being a risk?
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.
I have recommended this question be closed as follows:
Accept: Cliff Galiher (https:#a42384867)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
seth2740
Experts-Exchange Cleanup Volunteer
I have recommended this question be closed as follows:
Accept: Cliff Galiher (https:#a42384867)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
seth2740
Experts-Exchange Cleanup Volunteer
so it would suffice to open only one way from the forwarded server up to the forwarding server, right ? I'm not talking about UDP port, as naming resolution is then done by the receiving server, which is in the same network as its DNS clients.
Thanks.