Hi all,i wonder if theres any way to avoid,block or prevent certain types of DNS records such as 12 and 1 by changing or creating a registry key? and can i use the SecureResponses(DWORD) in the dnscache reg entry? will be looking forward for repliesThx in advanceRR

Can you explain what you mean by a "way to avoid,block or prevent certain types of DNS records such as 12 and 1"? I have no idea what you refer to here.Regarding the SecureResponses registry setting I can say that the default in Windows since Windows Server 2003 is that DNS cache pollution is enabled by default, but you will not find the registry setting anymore. More about this can be found in this KBarticle.Ray

Hello VistaGuyRay,ok what i mean with that is when you connect to a web site it caches the DNS records and when you type : ipconfig /displaydns then it shows all details about the DNS cache like this:accountservices.microsoft.com----------------------------------------Record Name . . . . . : accountservices.microsoft.comRecord Type . . . . . : 5Time To Live . . . . : 173Data Length . . . . . : 4Section . . . . . . . : AnswerCNAME Record . . . . : accountservices.microsoft.akadns.netso in the Record type sometimes it caches the types N1 and N12 and i wonder if theres anyway to ignore that type of record causei think that could be malicious records sometimes,like the newway of MIM attack so i hope that was clear for you if not ill try to explain again in other words...Thx in advance and will be looking forwardKind regards,RR

Hey im back, and im a bit concerned about my threads what i noticed is that this forum is used to solve windows 7 issues which has nothing to do with my threads, and thinking to myself i sortta suspect im being a little inconvinient and my posts should not be apropriate for this forum purposal,correct if im wrong and if thats the case where can i ask things regarding security implementations ?Thx a lot Best regards,RR

Kat,First of all the"Record Type" is a numeric representation about witch type the Record name is.In your example 5 is a CNAME record. If you see there a 1 it means that it is a A - record.If you see a 12 it means it is a PTR record. For more information look on: http://en.wikipedia.org/wiki/List_of_DNS_record_typesSo to come back on your question, i quote:i wonder if theres any way to avoid,block or prevent certain types of DNS records such as 12 and 1 by changing or creating a registry key?1. I am not aware of such a registery key, and i think you don't gonna find such a key.2. And if there was a way to block those types. It make no sense to block those type of records.Because it would crash and burn your DNS traffic.Doesthis answers your question?Kind RegardsDFT IM me - TWiTTer: @DFTER

Hi Daft,well always hoocking me up many thanks it might sound like a liar but i read a few minuts ago about record names LOL and yes you were clear enuff, and i also something to show ya and you can give me an advice if thats a good thing to practice and if it works for windows 7..DoNotRoundRobinTypesRegistry pathHKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\DNS\Parameters VersionWindows Server 2003 and Windows Server 2008 By default, DNS will perform round-robin rotation for all resource record types. You can specify that certain resource record types are not to be round-robin rotated in the registry. The registry entry DoNotRoundRobinTypes (REG_SZ) allows a string value to be entered containing a list of resource record types. By modifying this entry, you turn off round-robin rotation for specified resource record types. For example, to prevent round-robin rotation for A, PTR, SRV, and NS record types, you would enter the following value for the registry entry: a ptr srv ns.could that be added to dnscache entry? as the explanation said in windows server 2008 dont need it but i dont know if i add it will get enforced or something....again thanks a lot and i told you guys im not an expert i just like and need to learn more about those things and dont know if this forum also can be used for those questions, if it cant where else would you advise me to go...other thing can you analyze if thats normal:79.186.54.65.in-addr.arpa----------------------------------------Record Name . . . . . : 79.186.54.65.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 3240Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : bay16-f29.bay16.hotmail.com 18.1.102.66.in-addr.arpa----------------------------------------Record Name . . . . . : 18.1.102.66.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 84416Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : he-in-f18.google.com 101.93.125.74.in-addr.arpa----------------------------------------Record Name . . . . . : 101.93.125.74.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 85047Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : qw-in-f101.google.com 97.115.125.74.in-addr.arpa----------------------------------------Record Name . . . . . : 97.115.125.74.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 84324Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : vx-in-f97.google.com b.mail.google.com----------------------------------------Record Name . . . . . : b.mail.google.comRecord Type . . . . . : 5Time To Live . . . . : 72Data Length . . . . . : 4Section . . . . . . . : AnswerCNAME Record . . . . : b.googlemail.l.google.com chatenabled.mail.google.com----------------------------------------Record Name . . . . . : chatenabled.mail.google.comRecord Type . . . . . : 5Time To Live . . . . : 72Data Length . . . . . : 4Section . . . . . . . : AnswerCNAME Record . . . . : b.googlemail.l.google.com 189.1.102.66.in-addr.arpa----------------------------------------Record Name . . . . . : 189.1.102.66.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 85447Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : he-in-f189.google.com 132.93.125.74.in-addr.arpa----------------------------------------Record Name . . . . . : 132.93.125.74.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 85219Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : qw-in-f132.google.com 230.32.69.208.in-addr.arpa----------------------------------------Record Name . . . . . : 230.32.69.208.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 84647Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : google.navigation.opendns.com Record Name . . . . . : 230.32.69.208.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 84647Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : google.navigation.opendns.com www-gm-opensocial.googleusercontent.com----------------------------------------Record Name . . . . . : www-gm-opensocial.googleusercRecord Type . . . . . : 5Time To Live . . . . : 188Data Length . . . . . : 4Section . . . . . . . : AnswerCNAME Record . . . . : googlehosted.l.google.com 96.1.102.66.in-addr.arpa----------------------------------------Record Name . . . . . : 96.1.102.66.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 85308Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : he-in-f96.google.com 231.32.69.208.in-addr.arpa----------------------------------------Record Name . . . . . : 231.32.69.208.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 85688Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : google.navigation.opendns.com Record Name . . . . . : 231.32.69.208.in-addr.arpaRecord Type . . . . . : 12Time To Live . . . . : 85688Data Length . . . . . : 4Section . . . . . . . : AnswerPTR Record . . . . . : google.navigation.opendns.comi read something about reverse lookups etc i just wonder if that is normal ...Apreciate you assistence Kind regardsRR

CK, me thinks you are confused...Round robin DNS is a technique of load distribution, load balancing, or fault-tolerance provisioning multiple, redundant Internet Protocol service hosts, ...http://www.lmgtfy.com/?q=round+robin+DNS

LOL hi Bubba,yeah this looks confused, the thing is i try to write everything at the same time and then no one understands,roundrobin has nothing to do with what i was asking earlier,i have the whole discription of roundrobin,at the end of the post i just wanted to know if the roundrobin setting is relevant for windows 7,so first i asked if the "reverse lookup" looking like that was normal and then in second time i asked bout roundrobin setting...sorry tho im going to try writting more carefully and one thing at a time lol and thx for the resource !Best regards,RR