NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
DNS issues with Srxn 3205
We are having some issues with our Srxn 3205. Most users complain that when they go to goole, yahoo, cnn, etc the pages will timeout from time to time and will only display them after few refresh clicks.
We changed the DNS information on the firewall and all machines to point to google dns server 8.8.8.8. Still people are having issues from time to time and it is not conssistant. We placed a pc outside the firewall and that pc has no issues connecting to the internet what so ever.
We setup an internal DNS server on a 2008 test server and pointed some pcs to use that DNS server and they still had issues.
Is the firewall blocking DNS traffic and causing this issue?
Anything we need to look at to help us figure it out?
Thanks
We changed the DNS information on the firewall and all machines to point to google dns server 8.8.8.8. Still people are having issues from time to time and it is not conssistant. We placed a pc outside the firewall and that pc has no issues connecting to the internet what so ever.
We setup an internal DNS server on a 2008 test server and pointed some pcs to use that DNS server and they still had issues.
Is the firewall blocking DNS traffic and causing this issue?
Anything we need to look at to help us figure it out?
Thanks
9 Replies
- DNS Proxy enabled? Which Firmware?
- Firmware Version: 3.0.7-24
DNS proxy box is unchecked
Enable ARP Broadcast is checked.
Anything else we should check for? It is night an day connecting to the internet from behind the firewall and by passing it. - Default the router and manually reprogram it. Ditch the Google DNS servers and use your ISPs. Test. If that doesn't fix it contact Tech Support and ask them if they have any beta firmwares.
- have you lowered the MTU value ?
- Adit, we did that already, we rest the firewall and used the ISP DNS but thought that was the cause of the issue and that is why we used the google DNS.
jmizoguchi, we did not make any modifications to the firewall. We just have the basic setup and not even sure where to lower the MTU on the firewall.
Thanks we did not make any modifications to the firewall. We just have the basic setup and not even sure where to lower the MTU on the firewall.
http://interface.netgear-forum.com/FVS336G/wan1_advanced.htm
you find similar interface on srxn- MTU was default. I changed it 1500 but no change so far
- 1500 is default
Lower it down - MTU won't make any difference. A DNS packet is much smaller. DNS is a UDP packet which is limited to a max 512 bytes. If it is larger than 512, usually only possible in IPv6, it is fragmented into an additional packet. I would contact support on the issue to see if they have seen it.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
