XP DNS requests
Chris Brenton
cbrenton@chrisbrenton.org
Mon, 14 Jun 2004 23:02:09 -0400
On Mon, 2004-06-14 at 09:25, Wyburn, Marc Anil wrote:
>
> Jun 14 10:00:31 fw kernel: IN=eth1 OUT= eth0 SRC=192.168.0.19 DST=***.***.***.*** LEN=61 TOS=0x00 PREC=0x00 TTL=127 ID=26601 PROTO=UDP SPT=1029 DPT=53 LEN=41
You didn't specify what rule is logging this traffic. Is it your default
drop rule or something earlier?
Try this on the XP box the next time queries start to fail:
ipconfig /flushdns
If you now start working fine, your DNS is just running slow and XP is
caching negative entries. Make the following reg key change:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Dnscache\Parameters
DWORD: MaxNegativeCacheTtl
Value: 0
Reboot and you should be all set.
HTH,
Chris