On the ASA 5525-X is configured to access FQDN. Everything works well, but there is one feature. Lifetime matching FQDN and ip default 21 min., Obtained 21 minutes after ASA updates the information, but she did it for a minute and all this time blocked traffic. TTL for dns can be increased, but how to reduce this minute interval, preferably up to 1 second?
You cannot lower the ASA's DNS aging timeout below 1 minute. Note that each time the timeout occurs, the ASA must refresh the DNS entry, and then update and re-compile the ACLs (where the FQDN name is used). If you had multiple entries expiring every second, the policy would constantly be changing and the ASA would be constantly re-compiling the ACLs (ie: the Security Policy).
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...