I am reasonably certain that the resolver library will use anonymous/ephemeral ports as the source for its DNS queries. One way to verify this on 11.X is to take a copy of tusc from ftp.cup.hp.com, and perform a verbose tusc trace of an application that calls gethostbyname over and over again. If you see no calls to bind before the query is sent, or if you see calls that have "0" as the port number, anonymous or ephemeral ports are being used.
Of course, you can also get a copy of tcpdump (
www.tcpdump.org) and sniff the packets being sent on the wire.
I went grepping through the output of "strings" on the libraries in /usr/lib and did not find a query-source string in them. i could find "nameserver" and "domain." I also tried adding that query-source line to the /etc/resolv.conf file on my 11.0 system, and tcpdump still showed queries sourcing from ephemeral ports.
I did a less comprehensive check on 11.11 and had the same results. If you need to restrict queries to a specific port range it seems an enhancement request submitted through the response centre in in order
Or in your access list router, tell it to allow traffic to port 53 on the outside from any port in the ephemeral range. Under HP-UX 11, the default ephemeral range is 49152 to 65535. The ndd tunables tcp_largest_anon_port and tcp_smallest_anon_port control the boundaries of that range.
there is no rest for the wicked yet the virtuous have no pillows
