reboot 2003, and now dns.exe listens on thousands of ports
in [Windows Servers]
|
Prev: how to restore registry from the backup file
Next: ANN: I PRE-ORDERED KEVINPANZKE.CO AND KEVINJOHNPANZKE.CO RECENTLY!
From: ZenMasta on 21 Apr 2010 18:02 Hello, I had to reboot my server yesterday and when it came back online everything seemed fine, until I went to start my voip app. Which could not start because it said ports were in use. I checked and dns.exe had about 2500 ports listed Active Connections Proto Local Address Foreign Address State UDP 0.0.0.0:445 *:* various other ports here, no foreign address or stat, all exactly listed same as above. I terminated dns.exe and they all cosed and of course I was able to run my voice app. While I dont have any plans to reboot again (likely many months from now). I'm just wondering why dns.exe started this time and what this is all about? win2003 SP2 I searched the web for this and I dont have KB951746 installed. It's not really a big deal, just curious.
From: Ace Fekay [MVP - Directory Services, MCT] on 22 Apr 2010 00:20 On Wed, 21 Apr 2010 15:02:36 -0700, "ZenMasta" <me(a)nospam.kthx> wrote: >Hello, I had to reboot my server yesterday and when it came back online >everything seemed fine, until I went to start my voip app. Which could not >start because it said ports were in use. > >I checked and dns.exe had about 2500 ports listed >Active Connections > > Proto Local Address Foreign Address State > UDP 0.0.0.0:445 *:* >various other ports here, no foreign address or stat, all exactly listed >same as above. > >I terminated dns.exe and they all cosed and of course I was able to run my >voice app. > >While I dont have any plans to reboot again (likely many months from now). >I'm just wondering why dns.exe started this time and what this is all about? > >win2003 SP2 >I searched the web for this and I dont have KB951746 installed. It's not >really a big deal, just curious. > I saw this cross posted to the DNS newsgroup, abd replied as a cross-posted reply, but I am not sure if you would have found my reply. I copied/pasted it here for your convenience. ==== The 2500 ports, they are reserved ports for the dynamic client response ports. This was introduced with the DNS security update from July, 2009. Here's more info on this issue and what the reserved ports are all about. The DNS Cache Poisoning Vulnerability, Microsoft KB953230 Patch, and Ports Reservation Explained http://msmvps.com/blogs/acefekay/archive/2009/09/03/the-dns-cache-poisoning-vulnerability-microsoft-kb953230-patch-and-ports-reservation-explained.aspx I hope that helps. Ace This posting is provided "AS-IS" with no warranties or guarantees and confers no rights. Please reply back to the newsgroup or forum for collaboration benefit among responding engineers, and to help others benefit from your resolution. Ace Fekay, MVP, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003 Microsoft Certified Trainer Microsoft MVP - Directory Services If you feel this is an urgent issue and require immediate assistance, please contact Microsoft PSS directly. Please check http://support.microsoft.com for regional support phone numbers.
From: ZenMasta on 22 Apr 2010 13:37 How can I have another application get priority for some of the ports that this tries to reserve? "ZenMasta" <me(a)nospam.kthx> wrote in message news:%23RnNN5Z4KHA.5212(a)TK2MSFTNGP04.phx.gbl... > Hello, I had to reboot my server yesterday and when it came back online > everything seemed fine, until I went to start my voip app. Which could not > start because it said ports were in use. > > I checked and dns.exe had about 2500 ports listed > Active Connections > > Proto Local Address Foreign Address State > UDP 0.0.0.0:445 *:* > various other ports here, no foreign address or stat, all exactly listed > same as above. > > I terminated dns.exe and they all cosed and of course I was able to run my > voice app. > > While I dont have any plans to reboot again (likely many months from now). > I'm just wondering why dns.exe started this time and what this is all > about? > > win2003 SP2 > I searched the web for this and I dont have KB951746 installed. It's not > really a big deal, just curious. > >
From: Ace Fekay [MVP - Directory Services, MCT] on 22 Apr 2010 22:22 What application do you that's installed on a DNS server, that conflicts with these ports? IIRC, usually applications will just rely on the opperating system to setup the session and randomly pick an availalbe port and not a port in this reserved range. As for changing them, you may have missed seeing the links when you read my blog. They help explain how to change these reserved ports. I hope the links help. You experience issues with UDP-dependent network services after you install DNS Server service security update 953230 (MS08-037) http://support.microsoft.com/default.aspx/kb/956188 Some Services May Fail to Start or May Not Work Properly After Installing MS08-037 (951746 and 951748) http://blogs.technet.com/sbs/archive/2008/07/17/some-services-may-fail-to-start-or-may-not-work-properly-after-installing-ms08-037-951746-and-951748.aspx SBS Services failing after MS08-037 - KB951746 and 951748 http://msmvps.com/blogs/thenakedmvp/archive/2008/07/18/sbs-services-failing-after-ms08-037-kb951746-and-951748.aspx Ace On Thu, 22 Apr 2010 10:37:03 -0700, "ZenMasta" <me(a)nospam.kthx> wrote: >How can I have another application get priority for some of the ports that >this tries to reserve? > >"ZenMasta" <me(a)nospam.kthx> wrote in message >news:%23RnNN5Z4KHA.5212(a)TK2MSFTNGP04.phx.gbl... >> Hello, I had to reboot my server yesterday and when it came back online >> everything seemed fine, until I went to start my voip app. Which could not >> start because it said ports were in use. >> >> I checked and dns.exe had about 2500 ports listed >> Active Connections >> >> Proto Local Address Foreign Address State >> UDP 0.0.0.0:445 *:* >> various other ports here, no foreign address or stat, all exactly listed >> same as above. >> >> I terminated dns.exe and they all cosed and of course I was able to run my >> voice app. >> >> While I dont have any plans to reboot again (likely many months from now). >> I'm just wondering why dns.exe started this time and what this is all >> about? >> >> win2003 SP2 >> I searched the web for this and I dont have KB951746 installed. It's not >> really a big deal, just curious. >> >> >
From: ZenMasta on 26 Apr 2010 15:20
I have simply set the dns service to not start on startup. I am not using this box as a dns in the first place anyway. |