Hi Folks,
I have alot of dns failed/timeout messages from my firewall when its processing FQDN rules.
These timeouts are always for low TTL sites, like ocws.officeapps.live.com for eg.
I'm using the default dns expiry (1 minute). And I can lift this to a high time interval. It got me wondering:
Is there a time sensitivity for the Asa to get a response when processing a FQDN rule?