We have been experiencing persistent DNS problems with one of our UTM 120 boxes for several months.
Web browsers are configured to use the UTM as proxy and frequently get time outs or host unreachable errors reported by UTM. The UTM DNS logs report batches of "host unreachable" errors.
The errors appear to come in bunches. It will go 15 or 30 minutes with none, then there will be a batch of several hundred all in the span of a minute or two. Most seem to relate to CDN services such as akamai, edgecastcdn, facebook, amazonaws, edgesuite, google, etc.
We have tried various DNS forwarders including our ISP (Time Warner), Google and OpenDNS servers, all with similar results.
I thought it might be a problem with connectivity from our ISP, but I have been monitoring with a running ping and there is no apparent dropout associated with the DNS failures.
If we bypass the proxy and use our internal server for DNS, there are no problems.
Last week we gave up and replaced the UTM appliance but there was no change in the behavior. We have UTM 120's at 6 other locations, and none of the other have this problem.
Any ideas to help troubleshoot this would be most appreciated.
Thanks,
Alan
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
