06-29-2021 01:32 AM
using an internal Dns server
client makes request for a domain ???.com and cannot get an answer.
from nslookup we see that it cannot resolve the domain.
internal dns server to public dns server rule has a spyware profile.
There is no threat log for this request.But if we disable spyware profile then client can resolve this name.
Any idea about this issue ?
we checked this domain in the lab but it is legal not suspicious.Thanks
07-02-2021 02:15 AM
this is a known bug which will be fixed in 10.0.7
06-29-2021 05:52 AM
Do you have the DNS security subscription enabled on that firewall? If yes, does your firewall have internet access (at least towards paloalto dns service)?
06-29-2021 05:53 AM
license was trial and it is expired.
06-29-2021 05:56 AM
So in this case I assume this feature is still configured in the spyware profile?
06-29-2021 05:57 AM
is there a way to disable it ? All categories are selected as allow.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!