Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1082
Views
0
Helpful
1
Replies

ASA5505 Botnet Filter

john_rothingham
Level 1
Level 1

‎05-28-2012 11:55 PM - edited ‎03-11-2019 04:12 PM

Hello All,

We have an internal DNS server that all internal hosts do lookups to .. these requests are forwarded onto opendns for anything the dns server isnt authorative for.. My question is we have purchased the botnet filter and this requires the asa5505 dns client to be active on at least one interface .. Should i point the asa dns to an external IP such as 8.8.8.8 and apply DNS enabled on interface outside ( am using asdm)

I dont want the ASA to control DNS for our internal clients we already have a internal server for this, i  DO want the asa5505 to check dns packets against its botnet filter, whilst still using open dns for forwarding ... how can one do this ?

TIA

Labels:
0 Helpful
1 Reply 1

Kureli Sankar
Cisco Employee
Cisco Employee

‎06-03-2012 09:46 AM

This link doesn't really get into ASDM config but, you can use CLI and refersh ASDM and verify the config there.

https://supportforums.cisco.com/docs/DOC-8782

I found an asdm link as well:

http://www.cisco.com/en/US/docs/security/asa/asa83/asdm63/configuration_guide/protect_botnet.html

Good luck.

-Kureli

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card