Is the limit of Adress/PRT Records of the DNS Configuration really 64 entries?
Options
Brimerland
Posts: 2
Hi,
we changed to the ZyWall 110 VPN Firewall recently.
But now I am running into problems since I can not configure more than 64 DNS entries in the device.
The table found here
Configuration -> System -> DNS -> Address/PRT Record
opens a message box saying 'Items have reached the maximum number' when I try to add the 65th entry.
First I thought 'Maybe it's just the javascript client...' and added a 65th entry in the configuration file and uploaded it but this caused the device to reject the configuration completely a booted into a factory reset.
So ... is a device supporting 2 lans, 2 wans and a dmz supposed to have only 64 entries or can you raise the count in a future firmware update?
Best Regards
0
Best Answers
-
@Brimerland
Currently, the Address/PTR Record support 64 entries.
Regarding to your request,
I will move your request to idea section.
Charlie5 -
Thanks for clarifying.
0
Zyxel Employee
All Replies
-
@Brimerland
Currently, the Address/PTR Record support 64 entries.
Regarding to your request,
I will move your request to idea section.
Charlie5 -
Thanks for clarifying.
0 -
I cannot imagine why Zyxel would wish to be considered a major player, where it limits the number of Items that can be configured to some arbitrarily small number, like 100. Clearly, this is done to maintain your "performance" record. But without enabling a larger number of items, you severely limit the ability of network admins to finely tune their routers/switches.
For instance, at my company, our routers are constantly challenged by large numbers of hackers from disparate subnets around the world. We have the practice of excluding these subnets at the firewall. But we don't wish to exclude the entire internet, so we do this selectively. Limiting our ability to create Items increases the difficulty of fine-tuning our approach, leaving us to deal in a "ham-handed" manner with excluding such hackers and the irresponsible networks/ISPs on which they rely.
It should be a simple matter from a programming standpoint to update the firmware to permit as many as 32,767 entries on the list (presuming that your list is limited by the type length of its index). Please do so !
0 -
@ johnson_charles
Thanks for the suggestion. It’s kind of tradeoff considering to the affordability of the hardware capability.
0
Categories
- All Categories
- 390 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 51 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 331 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 879 Nebula FAQ
- 414 Security FAQ
- 220 Switch FAQ
- 194 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 61 Security Highlight
