1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

port 53 (dns) blocked - policy violation

Discussion in 'General Discussion' started by dica, Jul 12, 2006.

  1. dica

    dica LI Guru Member

    i've got a rv402 router. i've set up forwarding of port 53 to my server (192.168.123.3). i've also set up a firewall access rule to allow incoming reqests from WAN on port 53. if i try to telnet to port 53 from my server it works:

    telnet 192.168.1.3 53

    if i try the same thing using the WAN ip, i get this in the errror logs:

    Connection Refused - Policy violation TCP XX.XXX.XXX.XXX:1581->XXX.XX.XXX.XX:53 on ixp1

    what am i doing wrong?

    tks
     
  2. sufrano63

    sufrano63 Network Guru Member

  3. Toxic

    Toxic Administrator Staff Member

    ixp1 is WAN1 i guess are you sure your comming in on the right WAN or have a policy for WAN2 and port 53 perhaps? just a thought.....

    Also Port 53 is for DNS, just wondering if this is confusing the RV unit.
    since telnet is port 23 by default.
     
  4. dica

    dica LI Guru Member

    think i figured it out. the rule allowed port 53 on UDP, but not TCP. when i tried to telnet in, i was establishing a tcp connection, which was blocked.

    now the big questions. do dns queries generally come in as tcp or udp?

    tks
     
  5. sufrano63

    sufrano63 Network Guru Member

    UDP
     
  6. dica

    dica LI Guru Member

    great. tks to all.
     

Share This Page