DNS Proxy inheritance source


ATTENTION Customers, All Partners and Employees: The Customer Support Portal (CSP) will be undergoing maintenance and unavailable on Saturday, November 7, 2020, from 11 am to 11 pm PST. Please read our blog for more information.

Not applicable

DNS Proxy inheritance source

I want all devices on one of my interfaces to use my DNS servers, regardless of their configuration. Seems pretty simple, but I'm stuck.

I can edit and OK/OK out of the DNS proxy dialogs (PANOS 4.1.2), but commit fails with "Inheritance source needs to be specified."

The only option I have for "Inheritance source" is "None." I can only choose "Inherited" for "Primary." Where do inheritance sources come from? DHCP? I don't currently have the firewall acting as a DHCP server.

L4 Transporter

Inherited sources are available if your PAN FW is set up as DHCP client. If your IP address is received from the ISP then your PAN FW would receive a DNS entry from there too and this then becomes the inheritance source. Hope this helps.

L3 Networker

Hi Graves,

The thing about the DNS proxy config is that if the inheritance source is 'none' then you must supply your own primary server (and optionally a secondary).  It isn't obvious from the GUI, but you can type the IPs in those fields.

2-15-2013 2-15-07 PM.png

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!