Problem with DNS (TCP-UDP) requests Meraki + Umbrella
I have this strange problem I would like to see if anyone has an explanation about it.
When they try to open app.powerbi.com it is not loaded in the browser. DNS problem it says.
If you reveiw the logs in Umbrella, that request has an allowed statment. When I capture traffic in the clients port (from Meraki), I can see DNS request is done (UDP) but the reply from OpenDNS servers doesn´t come with an IP, then it retries using TCP and a RST is returned. I know that happened because they weren´t allowing TCP 53 in the firewall policy rules from Meraki. After allowing TCP 53 it works just fine.
What I don´t understand is why it is not working when you have Umbrella protection on with UDP and it does if you dont have Umbrella protection activated.
As far as I know, TCP only be used if the packet exceed 512 bytes, and the capture packet length says it was 508. I don´t know if Umbrella adds something to the packet so it could exceed that to use TCP instead.
UDP without Umbrella protection:
UDP with Umbrella protection (then you can see it tries with TCP-3wHS):
Good afternoon Friends, these days I was accessing the DNAC manager and my surprise is that I did not have access, after a basic analysis I observed that the equipment was operational, but without being able to access it via DNA GUI (browser) I also ident...
Today we are going to talk about how to configure backups in the Cisco ACI APIC Dashboard. As you might know APIC is a UCS based CIMC controller and we can check the configuration backups on the Cisco ACI APIC Dashboard. Remember that the HA solution mus...
Listen: https://smarturl.it/CCRS9E14 Follow us: https://twitter.com/CiscoChampion
Organizations are undergoing digital transformation like never before. Global spending on digital transformation of business practices, products, and organization...