09-30-2010 02:17 AM - edited 03-11-2019 11:47 AM
I have an issue with an server that is connected to a DMZ on a ASA 5510
There are errors on the log that says deny inbound udp from "object" to "dns server" due to dns query
The rule base has port 53 open and is configured as part of a service group that also has other ports open as well but still issues
I have attched config and any help would be appreciated
Thanks
09-30-2010 03:03 AM
The rule that you have is TCP/53, DNS resolution is on UDP/53. Please allow UDP/53 accordingly.
Hope that helps.
02-16-2012 12:25 AM
Dns service needs top and udp 53 both ...
Udp 53 for name resolutions and Tcp 53 for zone transfers !!!
Kamran!
Sent from Cisco Technical Support iPad App
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: