USG Lite 60AX DNS issues
Freshman Member
I recently installed a USG Lite 60AX and configured static IP on WAN interface with manual DNS (primary 8.8.8.8 - secondary 1.1.1.1).
Since i couldn't establish an IPSEC vpn using remote peer FQDN, i checked dns lookup and found out that it's resolving a really old public IP for the FQDN. VPN establish correctly if pointing directly to the FQDN updated public IP.
Clearly, FQDN is always up to date and correctly resolved from any other location, but not from the USG.
Also noticed that it make dns query on itself and i'm wondering why, i tried switching on DHCP for WAN and releasing the same public DNS choice from my router, but same issue.
Internet access come from an LTE tplink router working on a big national provider (Italy - TIM) in CGNAT. Even tried setting up ISP DNS but, again, same issue.
WAN Interface
DNS Lookup results
All Replies
-
Can you check from a device other then USG Lite 60AX by
nslookup FQDN 8.8.8.8
0 -
you mean behind the lte router?
0 -
yes
0 -
As PeterUK suggested, could you try running
nslookupfrom another device to check the DNS resolution result?If it resolves to the correct/updated IP address, please enable Zyxel Support Access and share your org/site names so we can further investigate this issue on your USG LITE 60AX device.
Zyxel Tina
0
Guru Member
Zyxel Employee
Categories
- All Categories
- 442 Beta Program
- 2.9K Nebula
- 220 Nebula Ideas
- 128 Nebula Status and Incidents
- 6.5K Security
- 606 USG FLEX H Series
- 344 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.4K Wireless
- 52 Wireless Ideas
- 7K Consumer Product
- 299 Service & License
- 482 News and Release
- 92 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.8K FAQ
- 34 Documents
- 87 About Community
- 105 Security Highlight
