• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

DNS Standard query response, Name Error

Scheduled Pinned Locked Moved IDS/IPS
1 Posts 1 Posters 752 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • D
    drewsaur
    last edited by Nov 21, 2017, 11:54 PM

    In the past 24 hours, it seems that almost all of the machines on my LAN are generating this alert from the ET DNS rules:

    1:2001117 - ET DNS Standard query response, Name Error

    Why would this happen all of a sudden? I see the PCRE in the rule that this is looking for, but I don't understand the rationale behind it.

    pcre:"/^..[\x81\x82\x83\x84\x85\x86\x87]\x83/"

    Thanks for any information you may have to offer.

    1 Reply Last reply Reply Quote 0
    1 out of 1
    • First post
      1/1
      Last post
    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
      This community forum collects and processes your personal information.
      consent.not_received