Hello, I have a DNS resolution issue
[Issue]
In our internal network environment, Host A is trying to connect to External Website A over ports 80 and 443.
However, Host A is unable to properly resolve the domain name of Website A.
[Description]
In the Outgoing Internet Access policy on the policy page, I configured the following rule:
Source: Host A
Destination: Website A (added as a domain-based network object)
Application: Web Browsing
Under this configuration, Host A is unable to browse Website A. The error messages are along the lines of “This page can’t be displayed” or “Please make sure the URL is correct.”
However, if I change the Destination to ANY, or to the IP address of Website A, the connection works fine.
Based on this, I initially suspect that the issue is related to DNS resolution for Website A.
That said, when I run a DNS lookup for Website A using Diagnostics > Tools > Perform a DNS lookup, it resolves correctly.
After the DNS resolution, Host A is immediately able to access Website A.
But after a while, the issue reoccurs, and Host A can no longer connect to the site.
[Additional Information]
Both Host A and the firewall itself are configured to use the same internal DNS server, which is our Microsoft Active Directory server.We’ve confirmed that the DNS connectivity is working correctly, and that DNS resolution through this server is functioning as expected.
At this point, I’m not sure whether the issue is related to a network/DNS resolution problem, or a configuration issue within the policy itself. Have I forgotten anything else?