In news:92871EC2-6D0D-4296-9181-(E-Mail Removed),
gmgordon <(E-Mail Removed)> stated, which I commented on
below:
> I have a Win 2003 server that is stand alone, no AD and inside our
> network. Want to replace our old DNS/DHCP servers with this server,
> but, everytime I configure DNS to resolve I receive and ICMP (3 3)
> port unreachable message.
>
> I've used portqueryui to examine the ports and I can see that 53/TCP
> is listening but 53/UDP is not. I've also run a packet capture on
> the server and can see that when a client makes a request the server
> will handle the request, but before sending the reply it will send a
> port unreachable. I'm confused. Have configured TCP/IP filtering on
> the network card to allow all.
>
> Thanks.
Keep in mind, that Windows also requires UDP 1024 and above for DNS query
traffic between WIndows machines. Either way, the intial query of any DNS
query (unless forced to use TCP) uses UDP first.
If you use nslookup, does it work? If not, when using nslookup, use this
command to force TCP: "set vc", then try again. If that works, then of
course UDP 53 is being blocked.
ICMP wouldn't really have anything to do with DNS communication. Just the
mere fact you are getting any sort of ICMP error means that the ping command
is not getting a reply because ping, not DNS, uses ICMP, therefore telling
me your filtering is blocking ICMP. It's also saying that filtering is not
set correctly.
If you disable filtering, does it work?
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Having difficulty reading or finding responses to your post?
Instead of the website you're using, I suggest to use OEx (Outlook Express
or any other newsreader), and configure a news account, pointing to
news.microsoft.com. This is a direct link to the Microsoft Public
Newsgroups. It is FREE and requires NO ISP's Usenet account. OEx allows you
to easily find, track threads, cross-post, sort by date, poster's name,
watched threads or subject.
It's easy:
How to Configure OEx for Internet News
http://support.microsoft.com/?id=171164
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Directory Services
Microsoft Certified Trainer
Infinite Diversities in Infinite Combinations
Assimilation Imminent. Resistance is Futile
"Very funny Scotty. Now, beam down my clothes."
The only thing in life is change. Anything more is a blackhole consuming
unnecessary energy. - [Me]
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Having difficulty reading or finding responses to your post?
Instead of the website you're using, I suggest to use OEx (Outlook Express
or any other newsreader), and configure a news account, pointing to
news.microsoft.com. This is a direct link to the Microsoft Public
Newsgroups. It is FREE and requires NO ISP's Usenet account. OEx allows you
to easily find, track threads, cross-post, sort by date, poster's name,
watched threads or subject.
It's easy:
How to Configure OEx for Internet News
http://support.microsoft.com/?id=171164
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Directory Services
Microsoft Certified Trainer
Infinite Diversities in Infinite Combinations
Assimilation Imminent. Resistance is Futile
"Very funny Scotty. Now, beam down my clothes."
The only thing in life is change. Anything more is a blackhole consuming
unnecessary energy. - [Me]
Similar Threads
Linear Mode
