[Courses] [Security] Firewall theory -- general (fwd)

[coldfire]

> Norton Internet Security has the "clever" idea of blocking UDP
> packets. Such as DNS lookups and responses.

to be *really* persnicketty :) .. DNS has the capability to operate over
tcp and udp ... however, for the typical lookups most hosts use, it only
utilizes udp.  tcp is usually used for things like zone transfers, etc.
(over port 53, tcp).


coldie