Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
696
Views
5
Helpful
1
Replies

Firepower Devices and DNS

kostasthedelegate
Level 4
Level 4

‎10-02-2019 12:55 AM - edited ‎02-21-2020 09:32 AM

Hello, 

 

I would like to ask if the FTD needs to access the internet DNS. 

I have high availability FTD 2110 managed by FMC and I see in the events that there are several queries to DNS that are blocked. 

DNS isn't managed by FMC? Do the FTDs have any reason to access DNS?

 

Thanks and regards, 

Konstantinos

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎10-02-2019 03:32 AM

FTD devices may be doing some lookups with cloud-based services like AMP for file policies. That would require DNS.

This and a few other uses are noted here:

https://www.cisco.com/c/en/us/td/docs/security/firepower/650/configuration/guide/fpmc-config-guide-v65/security_internet_access_and_communication_ports.html

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card