Cheers, I'll give them an option to try and come back to you with the outcome.

Thanks!

I tried in Lab - you can just paste killall wsdnsd in WebGUI ! You do not need sk77300 at all, look here:

So GAiA calls killall wsdnsd all 12 hours...

done. Let's see if that works every time 🙂

@Jerry would you please explain why to „kill“ the WSDNS daemon. I’m asking because we had an actual case with some problems with this daemon. And I‘m not really sure if these is needed if not using the gateway as proxy.

sure I'm happy to explain.

my customer's R81 ClusterXL is running multistack ipv4/ipv6.

I used to rise that concerns with R&D some year ago or so but killall wsdnsd is the only way to bring the name-resolution on multistack back to normal. otherwise you end up with Alerts all over the logs (CLM logging) and in terms of a need - well I'm well aware we've had such cases in the past but apparently it wasn't fixed nor DNS resolution due to the complexity of the design changed hence that process 2 time per day is the really a "work around" at the moment. That's all 🙂

That Gateway isn't used as proxy at all. It is a SG which uses both FWD DNS resolutions - IPv4 & IPv6 at the very same time but DNS servers supporting both back to the SG gives such errors (alerts) every day when only killing the wsdnsd helps for literally the period of 8h no more. 3 times a day killing that process (restarting effectively) helps to eliminate such huge hunger for logging saving a lot of space on the CLM.

Hope it clears up the situation mate.

J.

Use cpwd_admin list; ps aux | grep -v grep | grep wsdnsd shortly before and after the scheduled time to verify.

certainly a good option to verify the "workaround" solution. I only wonder why R81 still has issues with dual-stack networks ...

What does support say about this?

mostly blaming DNS server configuration and DNS setup of the SG but we've made a peace with that considering above workaround as the one viable option at the moment.

Could you please PM me with the SR#?

topic was that one Val

https://community.checkpoint.com/t5/General-Topics/Domain-resolving-error-Check-DNS-configuration-on...

SR No. I'm searching for so bear with me on that.

when the killall wsdnsd is done, 1 min. afterwards you've got to see below in the logs. That says a lot about how DNSv6 processing works on Gaia 3.x R81. I've made that scheduler for every 2h as it seems that the daemon does not cope well and every 2h demands restart of its processes. This seems to me like a workaround anyway and I wonder what R&D could do in order to fix that finally in such old build like R81 😛 

Good point, also tried it myself and it does work.