Robert Collins wrote:
> > I don't think it's DNS. This is a listening port. You don't need a
> > listening port to do DNS queries (unless I'm badly mistaken).
>
> Your badly mistake. For UDP queries you need one writing port and one
> reading port. I haven't checked the source here, but I suspect Colin is
> correct.
He is not so badly mistaken. Many DNS clients today use "connected" UDP
sockets. A "connected" UDP socket only accepts traffic from a specific
ip:port to your specific ip:port, and can only send traffic there.
On my virtual todo buried somewhere deep down in my brain is to extend
Squid to use this mechanism rather than the current "check each packet"
version. Would also fix the "dns server 0.0.0.0" configuration issue..
Doing so basically involves opening one UDP port for each configured DNS
server, and then connect() this to the server in question.,
-- Henrik Nordstrom Squid HackerReceived on Mon May 21 2001 - 15:50:41 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:00:13 MST