Hi all, I have had our DNS server published through ISA for some time. All seems to work fine, however, I keep getting the following alerts reported DNS Zone Transfer from Privileged Ports detected from 158.43.xx.xx:48449 to 62.189.xx.xx:53 where the second IP is our DNS server. I checked from the internet, and I can do a zone transfer using nslookup on our dns server, so the request seems to get server. Can anyone let me know if this is a problem. Why does the DNS filter check for transfers from high ports ? Patrick Scott