[7.903][NOTABUG][CLOSED] dns use pf rule !

Hello Friends !

its strange problem from me (only me ?)

i am using esxi 4 (5-6 guest ,asg and ubuntu are running  )

after upgrade all dns request is using pf rule and when i disable pf rule i am not able to browse but when i enable pf rule i am able to browse rule is in grey colour but it is not saying using pf rule

dns request is drop

00:13:03 DNS request UDP
192.168.2.189 : 62948
→
202.54.10.2 : 53
len=70 ttl=128 tos=0x00 srcmac=0:24:e8:a1:fa:aa dstmac=0:c:29:9a:46:66
00:13:03 Default DROP UDP
192.168.2.189 : 62948
→
202.54.10.2 : 53
len=70 ttl=127 tos=0x00 srcmac=0:24:e8:a1:fa:aa dstmac=0:c:29:9a:46:66
00:13:04 DNS request UDP
192.168.2.189 : 25742
→
202.54.10.2 : 53
len=63 ttl=128 tos=0x00 srcmac=0:24:e8:a1:fa:aa dstmac=0:c:29:9a:46:66

and there is problem i am facing

18:52:02 Default DROP UDP
192.168.3.125 : 48889
→
192.168.2.255 : 111
len=132 ttl=64 tos=0x00 srcmac=0:c:29:a1:f6:9d dstmac=0:c:29:9a:46:66
18:52:03 Default DROP UDP
192.168.2.189 : 138
→
192.168.2.255 : 138
len=233 ttl=128 tos=0x00 srcmac=0:24:e8:a1:fa:aa dstmac=0:c:29:9a:46:7a

pls check my interface details
ifconfig
eth0      Link encap:Ethernet  HWaddr 00:0C:29:9A:46:66
          inet addr:192.168.2.100  Bcast:192.168.2.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:8037 errors:0 dropped:0 overruns:0 frame:0
          TX packets:5483 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:3099198 (2.9 Mb)  TX bytes:4451181 (4.2 Mb)

some time back i had problem with https://community.sophos.com/products/unified-threat-management/astaroorg/f/102/t/69319

am i doing something wrong ?

thanks

0 Astaro Beta Bot over 15 years ago

Astaro Beta Report
--------------------------------
Version: 7.903
Type: NOTABUG
State: CLOSED
Reporter: utm_kid
Contributor: 
MantisID: 
Target version: 
Fixed in version: 
--------------------------------

0 AlanT_01 over 15 years ago

Hi, utm_kid

Just so I understand, you are allowing DNS with a packet filter rule, and when you disable the rule, DNS packets are dropped, and you are not able to surf the web. Is that correct?

If so, then this is proper behavior. You will need DNS enabled in order to surf the web. If you block DNS traffic, your web surfing should also stop working.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 utm_kid over 15 years ago in reply to AlanT_01

Hello AlanT,

dns proxy is enable ,still i am not able to browse by default it use pf rule to browse if pf rule is disable i am not able to browse
do i require dns proxy and pf rules on to browse internet ?

thanks
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 AlanT_01 over 15 years ago

Your packet filter log shows that 192.168.2.189 is going direct to 202.54.10.2 for DNS requests. I assume neither of these addresses is your Astaro's IP. This tells me that your workstation is not trying to use Astaro's DNS proxy. There isn't a transparent mode for the dns proxy, so you have to tell your machines to use it - either with DHCP, or directly.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 utm_kid over 15 years ago in reply to AlanT_01

yes ,
my client ip is 192.168.2.189
my asg is 192.168.2.100
dns 202.54.10.2 and 202.54.29.5
windows client has direct ip assin
before update to 7.903 same thing was working

thanks
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel