Adding FQDN host object causes restart of DNS and failure in name resolution.

Ticked ID for this issue is 05841009.

Unable to work with these devices currently as we get a lot of requests daily to whitelist FQDN's. This affect all our 8 firewalls.

Essentially ATP takes a long time to reload on smaller appliances, but a reload of the ATP should not be the case. 

In ATP, do you inspect all or only untrusted services? 

Only untrusted content. Does not matter if I test it on a XG 210 or 135. DNS is still down for several seconds after adding FQDN host. Removing host does not cause DNS to restart. Also tested this on a clean reset device with only one FW rule for WAN and same thing happens.

Here is a sample video how it behaves on all firewalls. DNS down for over 30 seconds. Imagine this when you have to add multiple FQDN entries.

https://www.veed.io/view/cfbf2989-cad9-4926-89d6-f74682b01ceb?sharingWidget=true 

This is with a fresh installation of 19.0.1

Received confirmation from support that they can replicate this. Hopefully we will see patch that fixes this soon.

Could you link us your support case iD? 

Case ID is 05841009

7 days without reply from support when it were promised in 3 days. No reply to emails. Not looking good Sophos...

Hello there,

Sorry to hear about this, I have sent an email to the escalation manager about this.

I can see the GES engineer has taken ownership of the case but hasn't sent an update to you.

Let me know if you hear back from them by the end of the day tomorrow!

Regards,

Hello Rieski,

I can see the GES engineer has updated you and this case is now with DEV with the following ID NC-109689

Regards,