Re: Windows 2003 external nslookup times out, internal works

From: "Kevin D. Goodknecht Sr. [MVP]" <admin@xxxxxxxxxxxxxx>
Date: Wed, 24 Aug 2005 14:01:28 -0500

Jason Carter <JasonCarter@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
> Thanks for the response!
>
> No, there is nothing to block those packets. As a matter of fact,
> after I asked this question, I added DNS services to one of our
> backup sql servers, also running 2003 SP1. DNS queries to that
> machine worked perfectly. Both machines are in the same subnet and go
> through the same firewall.
>
> The same type of firewall also protects the other two dns servers and
> they do not have an issue.

Did you verify that the EDNS packets are getting through?
The other two server may have had EDNS disabled.

--
Best regards,
Kevin D4 Dad Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================

.

Follow-Ups:
- Re: Windows 2003 external nslookup times out, internal works
  - From: Jason Carter

References:
- Windows 2003 external nslookup times out, internal works
  - From: Jason Carter
- Re: Windows 2003 external nslookup times out, internal works
  - From: Kevin D. Goodknecht Sr. [MVP]
- Re: Windows 2003 external nslookup times out, internal works
  - From: Jason Carter

Prev by Date: Re: Windows 2003 external nslookup times out, internal works
Next by Date: Re: Problem getting non-domain DHCP clients to dynamically add host records to Windows 2003 DNS server
Previous by thread: Re: Windows 2003 external nslookup times out, internal works
Next by thread: Re: Windows 2003 external nslookup times out, internal works
Index(es):
- Date
- Thread

Relevant Pages

Re: Windows 2003 external nslookup times out, internal works
... I can see the packets getting through. ... I can see the system passing DNS ... requests out to the root servers and forwarders if I have them specified. ... > Did you verify that the EDNS packets are getting through? ...
(microsoft.public.windows.server.dns)
Re: DNS Event 5504
... > I am receiving invalid packet messages in my DNS Log. ... This has come up on these DNS servers a lotI have been ... That said, it is possible that this is a EDNS issue, if you have a firewall ... UDP packets up to the MTU of your internet link. ...
(microsoft.public.windows.server.dns)
Re: Cant Resolve Certain internet DNS names
... Our firewall was already using 1500 MTU, but the Checkpoint SmartDefense ... Why are some websites using non-RFC compliant packets for DNS? ... > DNS server, but this reduces DNS efficiency because queries that won't fit ...
(microsoft.public.windows.server.dns)
Re: DNS Fixup/Inspect Pix/ASA 7.0 or greater breaking email
... emails being sent to AOL and Comcast plus a few other mom and pops to hang ... I have that there is no way that a DNS inspect command could cause only ... long responses have the response dropped, ... 1500 byte packets these days, that they can just send back longer ...
(comp.dcom.sys.cisco)
A paper by Amit Klein (Trusteer): "OpenBSD DNS Cache Poisoning and Multiple O/S Predictable IP ID Vu
... DNS transaction ID (OpenBSD ported BIND 9 into their code tree, ... fragmentation ID normalization feature (e.g. "scrub out random- ... packets and raw IP packets. ...
(Bugtraq)