Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1744
Views
0
Helpful
3
Replies

"DNS queries from this VA are not encrypted-Cisco Umbrella

YonladaThongma3268
Level 1
Level 1

‎10-17-2021 10:35 PM

Scenario:

I have installed VA cluster ( 4 Virtual Appliances).

Issue:

One of them is showing GREEN (DC clusterstatus: (Healthy) and other is showing ORANGE (OC cluster) status: (Warning) with the message

" DNS queries forwarded by this VA to Umbrella are not encrypted. For more information, and steps to resolve, please visit: https://support.umbrella.com/hc/en-us/articles/230902388#dnscrypt-disabled". 

 

I opened case with Umbrella support and  I  Check about connection port 53 allowed for TCP/UDP to 208.67.220.220, 208.67.222.222, 208.67.222.220 and 208.67.220.22
and Disabled IPS/IDS on firewall. I looked at the firewall and network requirements and found nothing out of the ordinary.

 

I opened support tunnels but Tac support tunnel can't connect to VA


Please help solve the problem VA.

Labels:
0 Helpful
3 Replies 3

pjain2
Cisco Employee
Cisco Employee

‎11-09-2021 09:08 AM

Hi,

 

Are you still facing this issue?

0 Helpful

johnjass714
Level 1
Level 1

‎11-13-2021 10:05 AM

Yes, I am still facing the same issue for this.

0 Helpful

adamwin
Cisco Employee
Cisco Employee
In response to johnjass714

‎11-17-2021 12:02 PM

The TAC support tunnel is the best way to debug this. However if that's not possible, please double-check the network requirements for VA: https://docs.umbrella.com/deployment-umbrella/docs/2-prerequisites-1#section-networking-requirements

0 Helpful
Customers Also Viewed These Support Documents