[ATP/FLEX]How to check multicast DNS packet in the firewall?
Zyxel_Jeff
Posts: 1,284 
Zyxel Employee
Zyxel Employee
in Networking
Scenario :
The user may encounter a problem where there is traffic related to port 5353 (multicast DNS) being dropped by the security policy, but they may not know which client IP is generating the traffic, as shown below:
This FAQ will guide you on how to check it.
Answer :
The user can utilize the CLI command "show sdwan interface" to list all interfaces and use the CLI "packet-trace interface interface name port 5353" to capture traffic related to port 5353 on the specified interface.
For example, using the command "packet-trace interface vlan10 port 5353" enables us to identify IPs attempting to send multicast DNS packets on port 5353 within the network environment.
See how you've made an impact in Zyxel Community this year!
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 151 Nebula Ideas
- 98 Nebula Status and Incidents
- 5.7K Security
- 277 USG FLEX H Series
- 277 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.4K Consumer Product
- 250 Service & License
- 395 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.6K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 74 Security Highlight