12-29-2020 10:26 AM
Hello.
I have two Firepower works on routing mode as showed on the diagram and client domain try access to the domain controller , the firepower 1 drop the DNS packet that returned by the domain controller after passed on the other firepower.
based on the diagram i have a domain client PC trying access to the DNS server (Domain Controller) with UDP source random number and destination UDP 53.
the packet was successfully received by the end device (Domain Controller) but when the domain controller replay to the client the firepower 1 drop the packet with ( source UDP port 53 and the destination port is random).
any idea to resolve this ??
12-29-2020 01:10 PM
At the very least you should also include the log message that you are seeing on Firepower1 when indicating that it is being dropped there.
- is there any NAT configured on Firepower1 or Firepower2?
12-30-2020 04:33 AM
Thank you for replay..
the log say the destination port random UDP not allowed,,, There is no NATING
I think this issue because the both Firepower working on routing mode and in this case the Firepower 1 when receive the packet from the Firepower 2 will drop it because it looks like a new session connection open not the same connection that opened by the domain client.
01-01-2021 01:40 PM
Could you please post a screenshot of the actual log message. If it say "no existing connection", then this is an asynchronous routing issue.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide