Just to add some information to the correct one below. Tcp queries are queries greater than 512 bytes. (normally). Microsoft uses to query via tcp with short queries too, I didn?t found any doc or pattern looking the queries to asume why m$ do this. Zone transfers like Nick said, are all via tcp -----Mensaje original----- De: netfilter-bounces@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-bounces@xxxxxxxxxxxxxxxxxxx] En nombre de Nick Drage Enviado el: Jueves, 23 de Septiembre de 2004 8:24 Para: netfilter@xxxxxxxxxxxxxxxxxxx Asunto: Re: nat and dns On Thu, Sep 23, 2004 at 01:09:43PM +0200, Samuel Díaz García wrote: > For DNS query only UDP is necesary, not TCP. Heh, that's such a common misconception that I almost mentioned it in my original email. Most DNS queries take place over UDP, however if the reply to the query is especially large then a new TCP connection is opened between the client and server. Also zone transfers take place over TCP IIRC, it depends what kind of functionality the DNS server will be providing. -- mors omnia vincit
