cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1926
Views
0
Helpful
2
Replies
netjess73044
Beginner

ASA 5510 denying local DNS Query

I have a ASA5510 ASA v7.0.8 in routed firewall mode. It is setup as the internal router and default gateway.

I was asked to set up a wireless router, I chose a D-Link DIR-815 (we are a small buisiness).

I have it all set up but I cannot get any name resolution.

The firewall is blocking traffic that is all internal. To clarify, it is  only blocking the DNS traffic from the D-Link wireless router, the rest  of the network operates just fine.

the message in the ASA log is like the following:

Deny inbound UDP from 192.168.1.246/xxxx to 192.168.1.10/53 due to DNS Query.

.246 being the "WAN" port my wireless router and .10 being my DNS server.

I tried adding an ACL "access-list dns extended permit udp any eq 53 any" but this didn't help.

Any ideas? Thanks.

2 REPLIES 2
netjess73044
Beginner

To let anyone know, if I take the same IP settings from the wireless router WAN port and put them on the LAN settings and use it like an AP it all works just fine.

Do you have the ACL on the right interface? Where are your access-group commands?