- CheckMates
- :
- Products
- :
- CloudMates Products
- :
- Cloud Network Security
- :
- Discussion
- :
- Re: Gateway is not reply on DNS requests
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Are you a member of CheckMates?
×- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Gateway is not reply on DNS requests
Hi,
I'm wondering why the firewall doesn't respond to DNS queries at all.
The provider DNS is set, but when I do an Nslookup with query google via the gateway IP (192.168.100.254), I only get the response: no answer from the server. What is the reason for this? I only found in the documentation that I have to enter the provider DNS. What else is missing here?
Customer network: 192.168.100.0/24
Please help me.
Kind regards
Rafael
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I assume the old firewall was not a Check Point.
Only Spark appliances provide this type of function for small office applications
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
The Gateway doesn't provide DNS proxy support if that's what you're asking here.
The end clients should reference a valid DNS server and this traffic needs to be permitted in your gateway policy.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Previously, the customer had a DNS hierarchy:
1. DNS is the Active Directory server for all computers
2. the Active Directory DNS server then had a forwarding to the old firewall
3. the firewall then made a request to the provider
This hierarchy no longer works, which is why the issue arose.
Because the Active Directory now queries the provider directly.
I am only surprised when my “nslookup” to the Check Point firewall is always answered with “No response”.
Thanks
Rafael
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I assume the old firewall was not a Check Point.
Only Spark appliances provide this type of function for small office applications