- You publish a DNS server by using Microsoft Internet Security and Acceleration (ISA) Server 2006.
- The DNS server is published not on the primary IP address. For example, the DNS server is published on a secondary IP address.
- You enable the DNS intrusion detection filter in ISA Server 2006.
If you disable the DNS Intrusion detection filter, all clients receive a response that is not limited by the published-IP address of the DNS server.
Hotfix rollup informationTo resolve this problem, install the hotfix rollup package that is described in the following Microsoft Knowledge Base (KB) article:
Important If you disable the DNS intrusion detection filter, the functionality that detects and filters DNS attacks is disabled.
Article ID: 2448051 - Last Review: Nov 19, 2010 - Revision: 1