Dynamic DNS registration port

Discussion in 'DNS Server' started by BookerW, May 16, 2005.

  1. BookerW

    BookerW Guest

    I "thought" i had all of the necessary ports open for dynamic registration of
    dns records. DOes anyone know the port(s) needed to allow dynamic updates of
    dns records through a firewall. I opened up 53(Which I believe is dns), and
    88, which was kerberos?
     
    BookerW, May 16, 2005
    #1
    1. Advertisements

  2. In
    If you open all the ports needed for proper AD communication, your firewall
    will be just like Swiss cheese. I'd recormmend a VPN.

    --
    Best regards,
    Kevin D4 Dad Goodknecht Sr. [MVP]
    Hope This Helps
    ===================================
    When responding to posts, please "Reply to Group"
    via your newsreader so that others may learn and
    benefit from your issue, to respond directly to
    me remove the nospam. from my email address.
    ===================================
    http://www.lonestaramerica.com/
    ===================================
    Use Outlook Express?... Get OE_Quotefix:
    It will strip signature out and more
    http://home.in.tum.de/~jain/software/oe-quotefix/
    ===================================
    Keep a back up of your OE settings and folders
    with OEBackup:
    http://www.oehelp.com/OEBackup/Default.aspx
    ===================================
     
    Kevin D. Goodknecht Sr. [MVP], May 17, 2005
    #2
    1. Advertisements

  3. If your computer attempts to get an IP from a DHCP server outside your
    network, it will not attempt to register its DNS record with your DNS server
    in your office unless you have your DNS server set statically on your
    workstation.

    Also, you said port 53. It needs to be UDP port 53. Also, if you open your
    DNS server to allow dynamic updates unsecured from the internet, you are
    opening yourself up to a host of possible DoS attacks and other security
    issues. I cannot think of a "need" to have your workstation registered on
    your internal DNS server unless you are doing something beyond normal remote
    work.

    What is your exact need because if you only allow remote DNS registration
    and Kerberos authentication, you still cannot get to shares or printers.
    Are you even asking about a firewall for remote connectivity or just between
    segments on your internal network?
     
    Jeremy Church, May 17, 2005
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.