Article ID: 260186 - View products that this article applies to.
This article was previously published under Q260186
When you upgrade your Microsoft Windows NT 4.0-based computer that is running Domain Name Service (DNS) to Windows 2000, you may experience name resolution issues.
If you then stop the DNS service and set the following registry key
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DNS\Parameters\SendPortas described in the Windows 2000 Resource Kit, you may receive the following error message when you restart the DNS service:
Value type: REG_DWORD
Value in decimal: 53
In addition, the following events may be logged in Event Viewer:
DNS server failed to start with system error 6 - The handle is invalid.
NOTE: The DNS server starts as expected if you configure the SendPort registry key to a value other than 53.
Event ID: 407
Description: DNS server could not bind a datagram (UDP) socket to [IP address of server]. The data is the error.
Event ID: 408
Description: DNS Server could not open socket for address [IP address of server]. Verify that this is a valid IP address on this machine. If it is NOT valid use the Interfaces dialog under Server Properties in the DNS Manager to remove it from the list of IP interfaces. Then stop and restart the DNS server. (If this was the only IP interface on this machine and the DNS server may not have started as a result of this error. In that case remove the DNS\Parmeters\ListenAddress value in the services section of the registry and restart.) If this is a valid IP address for this machine, make sure that no other application (e.g. another DNS server) is running that would attempt to use the DNS port.
This problem occurs because of a change in DNS behavior in Windows 2000.
To resolve this problem, obtain the latest service pack for Windows 2000. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/260910/EN-US/ )How to Obtain the Latest Windows 2000 Service Pack
Date Time Version Size File name Platform --------------------------------------------------------------- 06/13/2000 03:47p 5.0.2195.2096 321,296 Dns.exe Intel
Microsoft has confirmed that this is a problem in the Microsoft products that are listed at the beginning of this article. This problem was first corrected in Windows 2000 Service Pack 2.
Windows 2000 DNS uses ephemeral ports as the source port in an iterative query from a Windows 2000 DNS server to a root server, and Windows NT 4.0 and BIND implementations of DNS use User Datagram Protocol (UDP) port 53. Because of this, you need to leave all ephemeral ports open when you configure a firewall or router Access Control List (ACL).
For additional information about how to install Windows 2000 and Windows 2000 hotfixes at the same time, click the article number below to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/249149/EN-US/ )Installing Microsoft Windows 2000 and Windows 2000 Hotfixes