Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DNS Rule Apparently not working

    Firewalling
    2
    3
    1517
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jadiaz
      last edited by

      Am I missing something here. I have a rule, the first on the list (GUI), set to all TCP from LAN NET to ANY on port 53 (DNS).

      Even with this rule in place the firewall logs show any DNS requests as DENIED.

      After further investigation the filter logs show that Rule 50, which is the DENY ALL rule, is being invoked.

      am I doing something wrong??

      1 Reply Last reply Reply Quote 0
      • J
        jadiaz
        last edited by

        Nevermind. It was my lack of understand how DNS packets get routed.

        I was using only TCP and DNS should be UDP

        1 Reply Last reply Reply Quote 0
        • H
          hoba
          last edited by

          Depending on the implementation it might be udp and tcp. I would make the rule use protocol udp+tcp.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post