Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 845 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Firewall not picking up IP for FQDN

SOMOA

have a firewall rule to allow outgoing connects for teamviewer using a FQDN of *.teamviewer.com

However, when local endpoints trying to connect using one of the IPs in this FQDN the firewall blocks the request due to it bypassing the rule.

I can see the IP under this FQDN in the hosts and services.

This rule has been working fine for 12+ months. Any idea why this may not be working now?



This thread was automatically locked due to age.
Parents
  • 0

    if this matters at all

    before resetting/clearing the FQDN in the GUI by renaming it, I found the following behavior in the CLI

    doing a nslookup from the CLI on the XG for a domain did not add the returned IP to the hostset.

    after resetting/clearing the FQDN in the GUI by renaming it, I found the following behavior in the CLI

    doing a nslookup from the CLI on the XG for the same domain did add the returned IP to the hostset.

    XG CLI# nslookup au-per-anx-r001.router.teamviewer.com
Domain Name Server#  127.0.0.1
Domain Name       #  au-per-anx-r001.router.teamviewer.com
Resolved Address 1#  144.208.223.164
Total query time  #  54.84 msec
Domain Name       #  au-per-anx-r001.router.teamviewer.com
Resolved Address 1#  2a00:11c0:95:6:144:208:223:164
Total query time  #  55.86 msec

XG CLI# /sbin/ipset test hostset fqdn,714,0,144.208.223.164
HOSTID=714,TYPE=fqdn
        144.208.223.164 is NOT in set hostset.
XG CLI# /sbin/ipset test hostset fqdn,714,0,144.208.223.164
HOSTID=714,TYPE=fqdn
        144.208.223.164 is NOT in set hostset.
XG CLI# /sbin/ipset test hostset fqdn,714,0,144.208.223.165
HOSTID=714,TYPE=fqdn
        144.208.223.165 is in set hostset.
XG CLI# /sbin/ipset test hostset fqdn,714,0,144.208.223.165
HOSTID=714,TYPE=fqdn
        144.208.223.165 is in set hostset.
XG CLI# /sbin/ipset test hostset fqdn,714,0,144.208.223.164
HOSTID=714,TYPE=fqdn
        144.208.223.164 is NOT in set hostset.
XG CLI# nslookup au-per-anx-r001.router.teamviewer.com
Domain Name Server#  127.0.0.1
Domain Name       #  au-per-anx-r001.router.teamviewer.com
Resolved Address 1#  144.208.223.164
Total query time  #  55.11 msec
Domain Name       #  au-per-anx-r001.router.teamviewer.com
Resolved Address 1#  2a00:11c0:95:6:144:208:223:164
Total query time  #  40.82 msec

XG CLI# /sbin/ipset test hostset fqdn,714,0,144.208.223.164
HOSTID=714,TYPE=fqdn
        144.208.223.164 is in set hostset.
XG CLI#

  • 0 in reply to SOMOA

    Hello,

    Thank you for the update. Like I mentioned in some of the case enabling IP eviction helped and if that did not help. I suggest raising the support case with the logs you have added and mentioned bug ID as (NC-100716).

    Mayur Makvana
    Technical Account Manager | Sophos Technical Support
    Sophos Support Videos | Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link.

Reply Children
No Data
Unfiltered HTML