> client xx.xx.xx.xx#6704: query: z.tn.co.za ANY ANY +E class "ANY" has no purpose in the real world, not even for debugging. if you see it in a query, you can assume malicious intent. if you hear it in a query, you can safely ignore that query, or at best, map it to class "IN". -- Paul Vixie