Billion UK Forum

Anything About Billion For UK Users
https://www.forum.billion.uk.com/

7800DXL - Disable Internal DNS Server

https://www.forum.billion.uk.com/viewtopic.php?t=8454

Page 1 of 1

7800DXL - Disable Internal DNS Server

Posted: Mon Feb 15, 2016 2:40 pm
by aesmith
Hi,

Does anyone know how to disable the internal DNS server on the 7800DXL, or specifically how to prevent it responding to DNS lookups from the Internet? This is a risk to have that open as the router could be subject to a DNS attack. I've created a rule blocking inbound packets to port 53 from the outside, but if for example I point nslookup from work at my home external IP address, I still get a response. It appears that this processing bypasses the IP filter rules, or is carried out prior to checking the rules.

Thanks,

Tony S

Re: 7800DXL - Disable Internal DNS Server

Posted: Tue Feb 16, 2016 9:36 am
by billion_fan
aesmith wrote:Hi,

Does anyone know how to disable the internal DNS server on the 7800DXL, or specifically how to prevent it responding to DNS lookups from the Internet? This is a risk to have that open as the router could be subject to a DNS attack. I've created a rule blocking inbound packets to port 53 from the outside, but if for example I point nslookup from work at my home external IP address, I still get a response. It appears that this processing bypasses the IP filter rules, or is carried out prior to checking the rules.

Thanks,

Tony S

You need to remove the incoming rule, should then work fine. (I get DNS request timed out)

Re: 7800DXL - Disable Internal DNS Server

Posted: Tue Feb 16, 2016 4:34 pm
by aesmith
Thanks, that works. Looks like I was misinterpreting what "Shields Up" was telling me, because adding that rule changed port 53 from "stealth" to "blocked". However at that time I couldn't test from outside the network.
All times are UTC+01:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited