Subject: Re: No replys to Bind 8.3.4
To: Jean-Luc Wasmer <>
From: Manuel Bouyer <>
List: tech-net
Date: 07/02/2003 12:45:56
On Tue, Jul 01, 2003 at 09:39:06PM -0400, Jean-Luc Wasmer wrote:
> > is routed from the same ISP as you ( from what I can see.
> This is the second name server in /etc/resolv.conf:

OK, this is why there are requests to it.

> > netstat -i
> netstat doesn't return when this happens. It don't know if the flag -i will
> produce a different behavior.
> I will try next time.

try adding the -n flag to avoid DNS requests from netstat.

> > Hum, and just to be sure, is your server behind a firewall ?
> Yes. And my other server with that problem is behind a firewall from the
> same manufacturer.
> I was suspicious about this firewall, but I couldn't figure out how it could
> be responsible for this.
> > Note that all requests that don't get anserwed come from port 65534.
> > The ones to come from port 57301
> > After restart it starts using port 57248 and works again.
> That makes sense :-)
> But what makes named use one port for every outbound query... and then
> change for a new one?

By default it uses a dynamic port. 

Manuel Bouyer, LIP6, Universite Paris VI. 
     NetBSD: 24 ans d'experience feront toujours la difference