This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Help

Who rated this post

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Timothy_Hall
MVP Gold
MVP Gold
‎2022-03-18 11:57 AM

This is controlled by the fail-open/fail-close settings in situations where the inspection engine has an issue.  It is located in two places, not sure which one is relevant since there isn't enough of your log card shown.  You must have "fail-close" set in at least one of these locations:

1) Manage & Settings...Blades...APCL/URLF...Advanced Settings...Fail Mode

2) Manage & Settings...Blades...Threat Prevention...Advanced Settings...Fail Mode

Any kind of DNS error like this dictates checking and diligently testing the DNS servers defined in the Gaia OS of the firewall.  If one or more of them are slow or not responding consistently it can cause various performance-related mayhem with the rad daemon and APCL/URLF, among others.  Make sure *all* DNS servers defined in the Gaia OS respond quickly, not just the first one in the list which is automatically selected by nslookup.

New Book: "Max Power 2026" Coming Soon
Check Point Firewall Performance Optimization
(1)
Who rated this post