HowTo use Dig to check if a DNS server is using random source ports

You can quickly test with dig if a DNS resolver is using random source ports for queries:

dig +short @<IP_DNS_SERVER> porttest.dns-oarc.net txt

for more details check out my post about this: “How to check if your DNS server implements source port randomization

comments powered by Disqus