Zone Transfer — CompTIA Network+ (N10-009) Practice Questions

A DNS zone transfer is a mechanism by which DNS data for a zone is replicated from a primary name server to one or more secondary name servers, ensuring redundancy and consistency. On the Network+ N10-009 exam, zone transfers are relevant both operationally, because misconfigured zone transfers can expose an organization's entire DNS infrastructure to unauthorized parties, and as a security concern. Attackers who successfully perform an unauthorized zone transfer gain a map of all hostnames and IP addresses within a domain, which aids reconnaissance. Candidates should know that zone transfers use TCP on port 53 and should be restricted to trusted secondary server IP addresses.

Free questions on zone transfer