10-20-2015 12:01 PM
Hi, I'm just working on a low-level design for a customer and I need to get the RPZ feed from the lead secondary out in the DMZ through a firewall to the internal DNS servers. When I configure the grid secondaries it doesn't give me the option to use grid replication or zone transfer, which made me wonder which protocol it uses. I need to know for the firewall rules.
Anyway, I set it all up in the lab and sniffed the packets with wireshark.
It *looks* like it's using standard zone transfers, can someone confirm? I searched the admin guide but couldn't find anything, however at 1800 pages I could have missed it!
I just need to know so I can say for definite that the customer will need to open up port 53 on the firewall.
PCN (UK) Ltd
All opinions expressed are my own and not representative of PCN Inc./PCN (UK) Ltd. E&OE
Solved! Go to Solution.
10-20-2015 04:25 PM
Yes, I recall that this is true. If you are using a lead secondary, the distribution mechanism is via zone transfer. Admin guide states:
10-20-2015 05:03 PM