OK, so we are located in a 3rd world country, and for various reasons that I won't go into, the local ISP DNS server is untrustworthy, so we set our DNS forwarders on our UTM9 and on our internal Windows 2008 servers to the Google Public DNS servers.
As these Google Public DNS servers are not located in our country, the entire lookup process is slower than your average environment, so we used to get a lot of host not found errors, but once I extended the recursion timeout on our WIndows servers, those went away. Now I primarily get those errors from the UTM9 instead.
Sophos Support has told me there is no way to increase the DNS timeout on the UTM9, but I assume that they are talking about via the GUI.
I'm semi-confident in Linux, and was thinking I would extend the DNS timeout in the resolv.conf or somewhere where similar.
Has anyone had experience with the UTM9 and making changes to the conf files? Is there any "DO NOT DO THIS" warnings that I need to know about?
Any advice, similar situations?
(Yes, I have configured our UTM9 DNS as per the DNS recommendations but our situation is different to the standard)
Thanks
This thread was automatically locked due to age.
