ZLucas

Firewall disabled, when re-enabled DNS wont resolve [In progress]

4 posts in this topic

I created a test group of computers to test different policy on for troubleshooting. One of the things I tested was disabling firewall, when I discovered that was not our issue I enabled it again however on about 10% of those computers in the test group dns will not resolve. I can ping the dns servers, gateways and even internet sites via ip. If I disable firewall everything works ok again. These computers are all kes10 some xp some 7.

 

Any ideas what would cause this?

Share this post


Link to post
Share on other sites
I created a test group of computers to test different policy on for troubleshooting. One of the things I tested was disabling firewall, when I discovered that was not our issue I enabled it again however on about 10% of those computers in the test group dns will not resolve. I can ping the dns servers, gateways and even internet sites via ip. If I disable firewall everything works ok again. These computers are all kes10 some xp some 7.

 

Any ideas what would cause this?

Hello!

Please kindly specify the exact version of our products you are using.

Also please kindly check your Firewall rules. By default DNS requests are processed according to application rules; try changing them to 'Allowed' to see if this is the issue.

Thank you!

Share this post


Link to post
Share on other sites
Hello!

Please kindly specify the exact version of our products you are using.

Also please kindly check your Firewall rules. By default DNS requests are processed according to application rules; try changing them to 'Allowed' to see if this is the issue.

Thank you!

 

 

This is the issue. If I change request DNS (tpc and udp) to allow all it works again. However in my main group its set to "according to application rule" and there is no issue until the firewall is turned on then off. Is there a way I can resolve this without changing my main policy to allow all dns requests? Or is that not seen as a issue and go ahead and set it to allow all?

 

KES - 10.1.0.867

Share this post


Link to post
Share on other sites

Hi,

 

In order to solve the issue, please enable traces(see my singanture), follow the described scenario, disable treces and attach them to KL support request.

 

Please do not forgot to tell us the number.

 

Thank you.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now