A. You can normally make remote connections to a DNS server using a dynamic remote procedure call (RPC) port allocation (ports 49152 to 65535). If you want to disable this remote ability, you can make a registry change and then stop and start the DNS service.
- Start the registry editor (regedit.exe).
- Move to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DNS\Parameters.
- From the Edit menu, select New, DWORD value.
- Enter a name of RpcProtocol and press Enter.
- Double-click the new value and set it to 4.
- Click OK.
- Restart the DNS Server service with the commands
net stop dns net start dns
Related Reading:
- Q. What happens when a read-only domain controller (RODC) that's a DNS server receives a DNS write request from a client?
- Dnscmd Versions Discrepancy
- Q. I have a zone called TrustAnchors on my Windows Server 2008 R2 DNS server. What is it?
- Q. What happens when a read-only domain controller (RODC) that's a DNS server receives a DNS write request from a client?
Check out hundreds more useful Q&As like this in John Savill's FAQ for Windows. Also, watch instructional videos made by John at ITTV.net.
0 comments
Hide comments