DNS-Proxy: General Settings

In the DNS-Proxy general settings, you can modify the two protocol anomaly detection rules. We recommend that you do not change the default rule settings. You can also select whether to create a traffic log message for each transaction.

Settings

Screen shot of the Proxy Action page for the DNS- proxy in Fireware Web UI

DNS-Proxy Action general settings in Fireware Web UI

Screen shot of the DNS Proxy Action Configuration dialog box — General page

DNS-Proxy Action general settings in Policy Manager

Not of class Internet

Select the action when the proxy examines DNS traffic that is not of the Internet (IN) class. The default action is to deny this traffic. We recommend that you do not change this default action.

Badly formatted query

Select the action when the proxy examines DNS traffic that does not use the correct format.

Alarm

An alarm is a mechanism to tell users when a proxy rule applies to network traffic. Alarm notifications are sent in an SNMP trap, email, or a pop-up window.

To configure an alarm for this event, select the Alarm check box.

For more information about proxy alarms, see Proxy and AV Alarms.

For more information about notification messages, see Set Logging and Notification Preferences.

Log

To send a log message to the traffic log for this event, select this check box.

Enable logging for reports

Select this check box to create a traffic log message for each transaction. This option creates a large log file, but this information is very important if your firewall is attacked. If you do not select this check box, detailed information about DNS-proxy connections does not appear in your reports or log messages.

Override the Diagnostic Log Level for Proxy Policies That Use This Proxy Action

To specify the diagnostic log level for all proxy polices that use this proxy action, select this check box. Then, from the Diagnostic Log Level for This Proxy Action drop-down list, select a log level:

  • Error
  • Warning
  • Information
  • Debug

The log level you select overrides the diagnostic log level that is configured for all log messages of this proxy policy type.

For more information about the diagnostic log level, go to Set the Diagnostic Log Level.

Related Topics

About the DNS-Proxy

About Firebox Logging and Notification