Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Not Answered
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 3 replies
  • Subscribers 40 subscribers
  • Views 3033 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Unable to resolve IP address for this FQDN with SFOS 17.5.9 MR-9

Ste

Hello,

 

I've an issue with an XG135 (SFOS 17.5.9 MR-9) with the FQDN resolution. It can't resolve any FQDNs and the Firewall policies with FQDNs as destionation or source address are not working at all. The strange things are: if if I do lookup test on the same XG firewall it works and if I set LAN ip of the XG as DNS server of a PC and I do lookup it works.

Here I post 2 screenshoot for the FQDN chrome.google.com choose as example:

 

 

 

I've try to do a DNS service restart and a reload of the XG but it didn't solve.

Do you have any suggestion?

 

Thank you



This thread was automatically locked due to age.
Parents
  • 0

    Hi  

    The FQDN which you are trying is built-in and not getting resolved, could you please try to create a new FQDN for some other URL which is not pre-configured and share the result.

    Please also check other pre-configured FQDN as well.

    Please try to perform dnslookup from Advanced shell and try to capture logs from csc.log

    In the Advanced Shell, you can find the log files in the /log directory. These commands can be used to view the text in different ways. Commands are explained with examples below each one, variables such as path or filenames are enclosed in < > symbols.

    The tail -f command shows the log file's latest entries.

    • tail –f /log/<logfilename>.log Shows the log file's latest entries.

    You can use gerp command to extract specific information.

    Regards,

    Keyur
    Community Support Engineer | Sophos Support
    Sophos Support VideosKnowledge Base  |  @SophosSupport | Sign up for SMS Alerts |
    If a post solves your question use the 'This helped me' link

  • 0 in reply to Keyur

    Hi Keyur,

     

    I've done a test with the FQDN www.teamviewer.com creating the FQDN: *.teamviewer.com and the result gets error:

     

    XG135_XN03_SFOS 17.5.9 MR-9# cat csc.log | grep team
    Final get REquest Query after sort and filter : select hostname, netid, hostid from tblhost where hosttype in(11,18) and 1=1 and tblhost.hostname = '*.teamviewer.com'
    Final get REquest Query after sort and filter : select hostname, netid, hostid from tblhost where hosttype in(11,18) and 1=1 and tblhost.hostname = '*.teamviewer.com'
    API Get REquest for CCC Log: <Request><Get><FQDNHost> <Filter> <key name="Name" criteria="=">*.teamviewer.com</key> </Filter> </FQDNHost></Get></Request>
    Final get REquest Query after sort and filter : select hostname, netid, hostid from tblhost where hosttype in(11,18) and 1=1 and tblhost.hostname = '*.teamviewer.com'
    Final get REquest Query after sort and filter : select hostname, netid, hostid from tblhost where hosttype in(11,18) and 1=1 and tblhost.hostname = '*.teamviewer.com'
    API Get REquest for CCC Log: <Request><Get><FQDNHost> <Filter> <key name="Name" criteria="=">*.teamviewer.com</key> </Filter> </FQDNHost></Get></Request>
    value received =www.teamviewer.com,system::diagnosticstools=HASH(0xa209e08)
    expression :::::'www.teamviewer.com'=~/^[a-zA-Z0-9-_]+[\.[a-zA-Z0-9-]+]*$/ERROR Jan 24 07:27:55 [listener:1367]: ln_recvfrom: fd '97.TCP.INET.auxilary': peer connection closed'Success'
    value received =www.teamviewer.com,system::diagnosticstools=HASH(0xa74e060)
    expression :::::'www.teamviewer.com'=~/^[a-zA-Z0-9-_]+[\.[a-zA-Z0-9-]+]*$/ERROR Jan 24 07:37:52 [listener:1367]: ln_recvfrom: fd '96.TCP.INET.auxilary': peer connection closed'Success'
    XG135_XN03_SFOS 17.5.9 MR-9#

     

     

    XG135_XN03_SFOS 17.5.9 MR-9# nslookup www.teamviewer.com
    Domain Name Server# 127.0.0.1
    Domain Name # www.teamviewer.com
    Resolved Address 1# www.teamviewer.com.cdn.cloudflare.net.
    Resolved Address 1# 104.16.63.16
    Resolved Address 2# 104.16.62.16
    Total query time # 0.22 msec

    XG135_XN03_SFOS 17.5.9 MR-9#

     

     

    do you have any suggestion?

    Thank you

Reply
  • 0 in reply to Keyur

    Hi Keyur,

     

    I've done a test with the FQDN www.teamviewer.com creating the FQDN: *.teamviewer.com and the result gets error:

     

    XG135_XN03_SFOS 17.5.9 MR-9# cat csc.log | grep team
    Final get REquest Query after sort and filter : select hostname, netid, hostid from tblhost where hosttype in(11,18) and 1=1 and tblhost.hostname = '*.teamviewer.com'
    Final get REquest Query after sort and filter : select hostname, netid, hostid from tblhost where hosttype in(11,18) and 1=1 and tblhost.hostname = '*.teamviewer.com'
    API Get REquest for CCC Log: <Request><Get><FQDNHost> <Filter> <key name="Name" criteria="=">*.teamviewer.com</key> </Filter> </FQDNHost></Get></Request>
    Final get REquest Query after sort and filter : select hostname, netid, hostid from tblhost where hosttype in(11,18) and 1=1 and tblhost.hostname = '*.teamviewer.com'
    Final get REquest Query after sort and filter : select hostname, netid, hostid from tblhost where hosttype in(11,18) and 1=1 and tblhost.hostname = '*.teamviewer.com'
    API Get REquest for CCC Log: <Request><Get><FQDNHost> <Filter> <key name="Name" criteria="=">*.teamviewer.com</key> </Filter> </FQDNHost></Get></Request>
    value received =www.teamviewer.com,system::diagnosticstools=HASH(0xa209e08)
    expression :::::'www.teamviewer.com'=~/^[a-zA-Z0-9-_]+[\.[a-zA-Z0-9-]+]*$/ERROR Jan 24 07:27:55 [listener:1367]: ln_recvfrom: fd '97.TCP.INET.auxilary': peer connection closed'Success'
    value received =www.teamviewer.com,system::diagnosticstools=HASH(0xa74e060)
    expression :::::'www.teamviewer.com'=~/^[a-zA-Z0-9-_]+[\.[a-zA-Z0-9-]+]*$/ERROR Jan 24 07:37:52 [listener:1367]: ln_recvfrom: fd '96.TCP.INET.auxilary': peer connection closed'Success'
    XG135_XN03_SFOS 17.5.9 MR-9#

     

     

    XG135_XN03_SFOS 17.5.9 MR-9# nslookup www.teamviewer.com
    Domain Name Server# 127.0.0.1
    Domain Name # www.teamviewer.com
    Resolved Address 1# www.teamviewer.com.cdn.cloudflare.net.
    Resolved Address 1# 104.16.63.16
    Resolved Address 2# 104.16.62.16
    Total query time # 0.22 msec

    XG135_XN03_SFOS 17.5.9 MR-9#

     

     

    do you have any suggestion?

    Thank you

Children
Unfiltered HTML