There are times that you might have tons of DNS sockets on your Windows Server, in fact so many it is making it too hard to monitor who is connecting to your server. This can be limited by a registry key and a restart of the DNS Service.

One has to be carefull though not to limit the connections too much so that clients cannot resolve.

By default, DNS will take advantage of a large number of available sockets to offer greater entropy. However, if the user has defined port ranges in the registry, then the updates will respect the user-defined settings and will only allocate the defined sockets.

Socket ranges can be defined in the following registry location:

HKLM\System\CurrentControlSet\Services\DNS\Parameters Reg key Name: SocketPoolSize