I am using the ASA 5505 (firmware version asa723-k8.bin) previously, the asa can make as dns forwarder by using configuration below. all the PC dns is point to default gateway.
static (outside,inside) tcp interface domain 192.168.99.100 domain netmask 255.255.255.255
static (outside,inside) udp interface domain 192.168.99.100 domain netmask 255.255.255.255
we purchase new asa 5506 to replace this asa.
when i apply the same nat config, but it cannot work.
nat (outside,inside) source static OBJ-192.168.99.100 interface service OBJ-UDP-domain OBJ-UDP-domain
nat (outside,inside) source static OBJ-192.168.99.100 interface service OBJ-TCP-domain OBJ-TCP-domain
anyone can advise can new firewall because a dns forwarder/dns proxy or not.