Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1344
Views
0
Helpful
0
Replies

ASA FQDN RULE - is there a timeout for dns reply when processing rule?

evan.chadwick1
Level 1
Level 1

‎11-01-2018 02:06 PM - edited ‎02-21-2020 08:25 AM

Hi Folks,

I have alot of dns failed/timeout messages from my firewall when its processing FQDN rules.

These timeouts are always for low TTL sites, like ocws.officeapps.live.com for eg.

I'm using the default dns expiry (1 minute). And I can lift this to a high time interval. It got me wondering:

 

Is there a time sensitivity for the Asa to get a response when processing a FQDN rule?

 

0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card