https://community.cisco.com/t5/network-security/edns/m-p/1709228#M560957 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>To allow EDNSO packets, please increase the length of the packet to more than 2K under the default policy map.</P><P></P><P>policy-map global_policy</P><P>&nbsp; class inspection_default</P><P>&nbsp;&nbsp;&nbsp; inspect dns maximum-length 4096</P><P></P><P>Or, you can just configure "inspect dns".</P><P></P><P>Let me know.</P><P></P><P>Regards,</P><P>Anu</P></BODY></HTML> Mon, 13 Jun 2011 06:01:16 GMT Anu M Chacko 2011-06-13T06:01:16Z https://community.cisco.com/t5/network-security/edns/m-p/1709227#M560956 <P>how do I enable edns packets on a pix?</P> Mon, 11 Mar 2019 20:44:08 GMT https://community.cisco.com/t5/network-security/edns/m-p/1709227#M560956 Dragomir 2019-03-11T20:44:08Z https://community.cisco.com/t5/network-security/edns/m-p/1709228#M560957 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>To allow EDNSO packets, please increase the length of the packet to more than 2K under the default policy map.</P><P></P><P>policy-map global_policy</P><P>&nbsp; class inspection_default</P><P>&nbsp;&nbsp;&nbsp; inspect dns maximum-length 4096</P><P></P><P>Or, you can just configure "inspect dns".</P><P></P><P>Let me know.</P><P></P><P>Regards,</P><P>Anu</P></BODY></HTML> Mon, 13 Jun 2011 06:01:16 GMT https://community.cisco.com/t5/network-security/edns/m-p/1709228#M560957 Anu M Chacko 2011-06-13T06:01:16Z