Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    DNS Rule Apparently not working

    Firewalling
    2
    3
    1501
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jadiaz last edited by

      Am I missing something here. I have a rule, the first on the list (GUI), set to all TCP from LAN NET to ANY on port 53 (DNS).

      Even with this rule in place the firewall logs show any DNS requests as DENIED.

      After further investigation the filter logs show that Rule 50, which is the DENY ALL rule, is being invoked.

      am I doing something wrong??

      1 Reply Last reply Reply Quote 0
      • J
        jadiaz last edited by

        Nevermind. It was my lack of understand how DNS packets get routed.

        I was using only TCP and DNS should be UDP

        1 Reply Last reply Reply Quote 0
        • H
          hoba last edited by

          Depending on the implementation it might be udp and tcp. I would make the rule use protocol udp+tcp.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post