Connectivity Check on interface with domains
VPN 300 V5.36(ABFC.2)
Using ge3 VLAN443 external
I get this every now and then about every 30 mins I have checked my DNS by Wireshark and can see the DNS answers being sent to the VPN300 on VLAN53 (DNS to my BIND has its own VLAN)
DNS forwarder
192.168.53.12 to BIND and 192.168.53.4 USG60
set with bounceme.net and no-ip.org with when probe succeeds when any one
here is another example
All Replies
-
Dear @PeterUK
Could you share your topology with us? It's convenient for us to understand your finding. Thanks.
Share yours now!
0 -
It works for like 30 mins then does a DNS lookup and gets answer from BIND but the VPN300 choose not to accept the answer at times
Here you go
1 -
I'm not 100% sure I found the reason but I tried on FLEX200 and was not seeing a problem. I then added some WILDCARD FQDN in a group:
*googlevideo.com
*steamcontent.com
*yahoo.com
*youtube.com
enabled BWM with a rule with that group then started seeing a problem.
So a bug for DNS when the USG snoops DNS answers for WILDCARD FQDN?
0
Zyxel Employee
Categories
- All Categories
- 413 Beta Program
- 2.3K Nebula
- 192 Nebula Ideas
- 87 Nebula Status and Incidents
- 5.3K Security
- 142 USG FLEX H Series
- 253 Security Ideas
- 1.3K Switch
- 75 Switch Ideas
- 993 Wireless
- 51 Wireless Ideas
- 6.1K Consumer Product
- 231 Service & License
- 362 News and Release
- 74 Security Advisories
- 23 Education Center
- 5 [Campaign] Zyxel Network Detective
- 2.6K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 101 About Community
- 67 Security Highlight
