Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
341
Views
0
Helpful
3
Replies

New DMZ ISE node not able to reach DNS on inside zone

blocksupport
Level 1
Level 1

‎11-07-2024 02:51 AM

I am deploying a new ISE node which resides within a DMZ zone on FTD. During the initial bootstrapping it is failing to reach the name server .

ISE node 192.168.235.12 - DMZ zone

DNS 192.168.245.246

I have created a policy on the FTD and ran a packet capture the traffic is allowed.. What else could be stopping this?

0 Helpful
3 Replies 3

Flavio Miranda
VIP
VIP

‎11-07-2024 03:34 AM

@blocksupport 

 Where the DNS server is connected? Does it have gateway or use route table?

0 Helpful

Aref Alsouqi
VIP
VIP

‎11-07-2024 03:35 AM

What action did you apply to that rule? I would try to change it to "trust" if that is not already applied. Another thing come to mind,  in terms of routing, does the DNS server know how to reach ISE?

0 Helpful

MHM Cisco World
VIP
VIP

‎11-07-2024 03:40 AM

Share packet tracer ypu run'

Send it to me as PM

MHM

0 Helpful
Customers Also Viewed These Support Documents