Trying to figure out how/why to setup the Astaro to NOT dropping stuff that doesn't looks as if it should be dropped.
On the public side, I've got off course the Astaro's public address and I've got a Netware server doing DNS only.
So, tried every possible idea of packet filter,exclusiong, performance tuning(IPS) etc...still, the biggest source and/or destination of dropped packets is always DNS between the Astaro and my public NW/DNS server.
in the top dropped source and hosts, both the servers are on the top.
either with DNS on TCP/UDP with 53 as destination,
or with the reverse, 53 as source and high port's as the destination.
I do have NDS inside to any,
I have tested with public address to any / dns
I have tested with NW/DNS to any / dns
I have tested with public address to any / dns
I have tested with NW/DNS to PUBLIC address - ANY
etc,,etc and combinations thereof.
No difference, Astaro still drops most of them,
Maybe it's not a big issue since most things seems to work,
but, it BUGS ME not beeing able to see the right stuff beeing dropped while simply ignoring what IS correct.
I mean, the NW/DNS is the primary resolver for the Astaro, so it has to speak with it.......
This thread was automatically locked due to age.
