Create a Post
Showing results for 
Search instead for 
Did you mean: 

DNS Query going through implied rules

Currently, In checkpoint firewall (R80.20 take 47) i see lot of DNS query request is going from firewalls IPs to Internal DNS servers. I want to stop this because DNS
query is coming from firewalls IPs and its pointing to malicious dominas via interanl DNS servers.

Secondly, I changed the DNS settings to Public DNS servers and also , i have uncheck Implied rules i.e "Accept Domain Name UDP QUERIES" and "Accept incoming traffic to DHCP and DNS services of gateways" but
till i see DNS request is coming through security gateways to AD servers.

Can anyone guide or help us why such behaviour is observed ??


0 Kudos
1 Reply

The DNS Server being queried here is a function of what you've configured in GAIA OS.
Change it to a different server.
0 Kudos