Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 10 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 23203 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNS lookups are returning empty results

Tich Matongo

I am using XG Firewall as a web proxy and when I try to open google.com or any other website it gives me the message "This page isn't working"  and a HTTP 500 error.    The DNS servers that are configured in the firewall are 8.8.8.8 and 4.2.2.2.  In Diagnostics the DNS name lookup tool on the firewall is not resolving any website names but I am able to ping the DNS servers being used.  Logged on to the console using SSH and did a cat /etc/resolv.conf and it has "nameserver 127.0.0.1".   I have verified that the DNS Server is running.  

 

tcpdump "port 53" gives

17:13:42.679679 lo, IN: IP localhost.55160 > localhost.domain: 50833+ A? resolver1.ast.ctmail.com. (42)
17:13:42.680164 Port3, OUT: IP 192.168.10.253.20257 > 4.2.2.2.domain: 63863+ A? resolver1.ast.ctmail.com. (42)
17:13:43.349609 Port2, IN: IP 10.1.0.3.55881 > 8.8.8.8.domain: 15610+ A? teredo.ipv6.microsoft.com. (43)
17:13:43.350171 Port3, OUT: IP 192.168.10.253.55881 > 8.8.8.8.domain: 15610+ A? teredo.ipv6.microsoft.com. (43)
17:13:44.349994 Port2, IN: IP 10.1.0.3.55881 > 8.8.8.8.domain: 15610+ A? teredo.ipv6.microsoft.com. (43)
17:13:44.350390 Port3, OUT: IP 192.168.10.253.55881 > 8.8.8.8.domain: 15610+ A? teredo.ipv6.microsoft.com. (43)
17:13:44.387551 Port3, OUT: IP 192.168.10.253.62398 > 199.7.83.42.domain: 19042 A? cisco.com. (27)
17:13:44.387775 Port3, OUT: IP 192.168.10.253.35914 > 192.58.128.30.domain: 16028 AAAA? cisco.com. (27)
17:13:45.350064 Port2, IN: IP 10.1.0.3.55881 > 8.8.8.8.domain: 15610+ A? teredo.ipv6.microsoft.com. (43)
17:13:45.350477 Port3, OUT: IP 192.168.10.253.55881 > 8.8.8.8.domain: 15610+ A? teredo.ipv6.microsoft.com. (43)
17:13:46.143694 Port3, OUT: IP 192.168.10.253.6953 > 192.228.79.201.domain: 13547 A? resolver4.ast.ctmail.com. (42)
17:13:46.467724 Port3, OUT: IP 192.168.10.253.1878 > 192.33.4.12.domain: 53090 PTR? 12.4.33.192.in-addr.arpa. (42)
17:13:46.523716 Port3, OUT: IP 192.168.10.253.20812 > 192.58.128.30.domain: 6907 PTR? 4.36.112.192.in-addr.arpa. (43)
17:13:46.691731 Port3, OUT: IP 192.168.10.253.28026 > 192.33.4.12.domain: 54723 A? iprep4.t.ctmail.com. (37)
17:13:47.350241 Port2, IN: IP 10.1.0.3.55881 > 8.8.8.8.domain: 15610+ A? teredo.ipv6.microsoft.com. (43)
17:13:47.350707 Port3, OUT: IP 192.168.10.253.55881 > 8.8.8.8.domain: 15610+ A? teredo.ipv6.microsoft.com. (43)
17:13:47.523730 Port3, OUT: IP 192.168.10.253.28417 > 192.36.148.17.domain: 56842 PTR? 241.5.5.192.in-addr.arpa. (42)
17:13:47.687635 lo, IN: IP localhost.55160 > localhost.domain: 50833+ A? resolver1.ast.ctmail.com. (42)
17:13:47.688069 Port3, OUT: IP 192.168.10.253.49160 > 4.2.2.2.domain: 53008+ A? resolver1.ast.ctmail.com. (42)
17:13:48.527919 Port3, OUT: IP 192.168.10.253.24754 > 192.33.4.12.domain: 5259 PTR? 33.27.12.202.in-addr.arpa. (43)



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to rfcat_vk

    I created a firewall rule with the settings

    Action:Accept

    Source:LAN

    Network:Any host

    Destination:WAN

    Network: Any host

    Services:HTTP,HTTPS,TCP_3128

     

    In Administration>Device Access I enabled Web Proxy on the LAN zone

    Then added the proxy to the web browser 

Children