A. You can normally make remote connections to a DNS server using a dynamic remote procedure call (RPC) port allocation (ports 49152 to 65535). If you want to disable this remote ability, you can make a registry change and then stop and start the DNS service.
- Start the registry editor (regedit.exe).
- Move to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\DNS\Parameters.
- From the Edit menu, select New, DWORD value.
- Enter a name of RpcProtocol and press Enter.
- Double-click the new value and set it to 4.
- Click OK.
- Restart the DNS Server service with the commands
net stop dns
net start dns
Related Reading:
Check out hundreds more useful Q&As like this in John Savill's FAQ for Windows. Also, watch instructional videos made by John at ITTV.net.