DNS Queries Generated When Static Packet Filter Is Removed (269556)
The information in this article applies to:
- Microsoft Internet Security and Acceleration Server 2000
This article was previously published under Q269556 SYMPTOMS
When a static packet filter for Domain Name System (DNS) traffic is defined in Microsoft Internet Security and Acceleration Server with dynamic packet filtering enabled, DNS traffic is able to flow into a network protected by Internet Security and Acceleration Server. However, when the static packet filter for DNS is removed, Internet Security and Acceleration Server is still able to generate DNS queries and receive responses.
STATUS
This behavior is by design.
MORE INFORMATION
Static and dynamic filters serve different general purposes. When you use dynamic filtering, Internet Security and Acceleration Server creates and removes packet filters on the external interface when necessary. As a result, internal clients are able to generate successful queries. Static packet filters, however, are used to receive incoming requests from external clients.
| Modification Type: | Minor | Last Reviewed: | 1/15/2006 |
|---|
| Keywords: | Kbisa2004yes kbDNS kbenv kbprb KB269556 |
|---|
|