Created a bridged interface to eval this Sophos in-line of my network. I have everything up and fw policies created, users can access resources fine however DNS seems to freak out every couple of hours. Clients report lost connections, and in the systray the lan connection changes to "limited" briefly then the workstations reconnect.
I followed this doc: Best practice: DNS Configuration on the Sophos UTM
And configured my DNS to use our campus server, external to my lan.
DNS - Global - Allowed Networks is blank
DNS - Forwarders - I have our campus DNS servers listed here
My DNS proxy log shows many instances of, the last line being one of the dns servers:
2014:07:29-15:40:12 airlock named[4468]: error (network unreachable) resolving 'pool.ntp.org/A/IN': 193.0.14.129#53
2014:07:29-15:40:12 airlock named[4468]: error (network unreachable) resolving 'pool.ntp.org/A/IN': 199.7.83.42#53
2014:07:29-15:40:12 airlock named[4468]: error (network unreachable) resolving 'pool.ntp.org/A/IN': 202.12.27.33#53
2014:07:29-15:40:12 airlock named[4468]: error (network unreachable) resolving 'all.broker.sophos.com/A/IN': 128.192.1.193#53
And my syslog shows many of:
2014:07:29-15:39:01 airlock /usr/sbin/cron[6872]: (root) CMD (/sbin/audld.plx --trigger)
2014:07:29-15:39:12 airlock dns-resolver[4436]: DNS server failed to contact!
2014:07:29-15:40:01 airlock /usr/sbin/cron[6931]: (root) CMD ( /usr/local/bin/reporter/system-reporter.pl)
2014:07:29-15:40:12 airlock dns-resolver[4436]: DNS server failed to contact!
2014:07:29-15:41:12 airlock dns-resolver[4436]: DNS server failed to contact!
2014:07:29-15:42:12 airlock dns-resolver[4436]: DNS server failed to contact!
Any idea what is causing the errors in logs, and why does DNS only appear to drop out randomly to clients throughout the day?
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.