I recently went through the testing of the Gibson Research Corp, which I seemed to pass all of the tests except the "DNS Spoofability" test. It listed a few options to decrease the likely hood of certain threats by ignoring External queries. I'm not too sure what or how to make some of these changes, but I have provided screen shots of the data below, and thought I would see if there was any information on how to "fix" the errors.
Pic one shows the query source port analysis, #2 is the DNS Nameserver Access Details. (I passed the common port test, but in this pic it says I responded to an Icmp echo response, so not sure there, I thought that would have popped up in the port test)
Anyway this looks a little deeper than I'm used to and was looking for some info about the results and how to go about solving them.