Loading...
Loading...
Many DNS traffic logs after adding access rules with Domain Objects.;SmartLog shows that the Security Gateway is generating a huge amount of DNS queries per day.;High CPU utilization on log server.
Starting from R80.10, to match a rule with FQDN Domain Object, the Security Gateway performs name resolution using direct DNS query. The resolved IP addresses are cached, and traffic to those IP addresses is matched on the rule using that FQDN object. The timeout of the FQDN cache respects the TTL of the DNS. This may cause too many DNS query connections from the gateway to the DNS server. These are logged as implied rule.
Gaia
Click on a version to see all relevant bugs
Check Point Integration
Learn more about where this data comes from
Bug Scrub Advisor
Streamline upgrades with automated vendor bug scrubs
BugZero Enterprise
Wish you caught this bug sooner? Get proactive today.