Thanks for this. All working now.
On Sat, 2008-11-15 at 01:01 +1100, Mark Andrews wrote:
> In message <[EMAIL PROTECTED]>, "Dean, Barry" writes:
> There is a firewall sitting in front of the servers for
> bjmu.edu.cn that is blocking traffic from port 53.
I think that there was, somewhere out there, blocking source port 53.
> Now your nameserver is most probably configured to use
> port 53 for out going queries. You should remove that
> configuration setting and also ensure you are running
> a named version that randomises the source port of the
> UDP queries.
I have, and I am. This was my mistake from an incorrect understanding
of the "query-source" directive. I must have thought that the "port 53"
bit was mandatory, but clearly I was having one of my senior moments.
It all makes a lot more sense now...
--
Barry Dean
Networks Team
Computing Services Department
Tel: 45641, Web: http://pcwww.liv.ac.uk/~bvd/
---
Nice boy, but about as sharp as a sack of wet mice.
-- Foghorn Leghorn
_______________________________________________
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
