This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Dns

I wonder if anyone can cast a light on the problem I am currently experiencing.
In order to get web access I have to define a filter to pass everything that is directed to port 53. ( Source ports seem to vary but 1032 is typical ).
I have only specified my ISP's DNS's in the forwarders page.

Have I missed something obvious?

Many thanks

This thread was automatically locked due to age.

0 lantech over 18 years ago

It sounds as if you are blocking all traffic outbound and only allowing certain traffic to work.  While this is very secure, it also means you have to have rules for ALL traffic that needs to leave the network.

I'm still a little new at the Astaro's so don't take this for gospel, but I think its correct.

If you have setup your DNS forwarders on the Astaro, your workstations should be pointing to your astaro box for their DNS and not to your ISP.  Otherwise they will need DNS access out of the local network.

Another suggestion, a little off topic.  We found that pointing all of our forwarders to the opendns.org servers actually increased our web response times greatly over our ISP.

Hope this helps.
Cancel
Vote Up 0 Vote Down

Cancel
0 Alasdair_01 over 18 years ago in reply to lantech

Thanks Lantech. As you correctly surmised I was using my ISP's DNS servers on the PC. After I pointed it at the Astaro all was sweetness and light. And I also started getting the content filtering as well.
As a novice at hardware firewalls I am gradually learning.
Cancel
Vote Up 0 Vote Down

Cancel