27 Jun
2017
27 Jun
'17
10:06 a.m.
Lynwood,
The question that occurs to me is why do you have your DNS server exposed
to the network when likely no one is using it? It's not listed in the NS
records for the zones and so the only way to make use of your server is
to explicitly configure it as a server (in resolv.conf or its equivalent),
which, excuse me, I doubt very many people have done.
- Brian
On Tue, Jun 27, 2017 at 05:01:53PM +0200, Borja Marcos wrote:
On 27 Jun
2017, at 16:34, lleachii--- via 44Net <44net(a)hamradio.ucsd.edu> wrote:
- I don't run any GRE tunnels (most of the Protocol 47 packets are coming from
China)
- The only tcp/53 I have open is AMPR DNS (most connections are coming from
104.236.176.72)
Does anyone currently use tcp AXFR to copy 44.IN-ADDR.ARPA. or AMPR.ORG. from me?
My apologies if this is really obvious, but I hope you are aware that TCP is also used for
general DNS queries, not just
zone transfers,
Cheers,
Borja EA2EKH