- You publish a DNS server by using Microsoft Internet Security and Acceleration (ISA) Server 2006.
- The DNS server is published not on the primary IP address. For example, the DNS server is published on a secondary IP address.
- You enable the DNS intrusion detection filter in ISA Server 2006.
If you disable the DNS Intrusion detection filter, all clients receive a response that is not limited by the published-IP address of the DNS server.
Hotfix rollup informationTo resolve this problem, install the hotfix rollup package that is described in the following Microsoft Knowledge Base (KB) article:
Important If you disable the DNS intrusion detection filter, the functionality that detects and filters DNS attacks is disabled.
ID Bài viết: 2448051 - Xem lại Lần cuối: 19-11-2010 - Bản sửa đổi: 1