I am using an ASA to segment my internal network. The device is currently monitoring traffic between the networks. I'll tighten it down in a week.
The traffic that is passing is logged via IP, of course, except for the hosts that I've entered in with the "NAMES" command. Why are firewalls not able to get their resolution info from an internal DNS server? Would it be a security flaw? I ask, because I think it would be more accurate to use DNS, rather than enter countless "NAMES".
thanks in advance...
Currently ASA/PIX is not designed to resolve IP to URL or vice-versa. This is a good feature though and developers are working on it. We hope to see this coming in future releases. Not sure when. I would recommend you to get in touch with your accounts team if you have one. They can directly get in touch with developers and probably raise the severity of this request.