Hi Community, I can see my firewall is sending DNS requests ( request for A record) to resolve some of internal hostnames. I dont have GP/detect internal host configured I dont have FQDN objects with these hostnames I have exported and checked entire config, the firewall is not having this hostname in the configuration It is requesting for A record ( so 'resolve hostname' is not causing it. Dont have DNS proxy configured in firewall This are internal hostnames, not malicious, which rule out DNS queries because of HTTP/TLS evasion This looks like firewall is trying to resolve in real time. I understands that firewall will be using DNS for reporting, management services (such as email, Kerberos, SNMP, syslog) as per document. But not sure because of which of this reason firewall is trying to resolve these internal hostnames. It would be helpful if anybody can answer this. Thanks in advance !
... View more