How to log all outgoing DNS queries (Port 53) on Fortigate 100E

Forum|Forum|6 years ago
September 18, 2019
1 reply
7084 views

Hi connections!!

Like every other typical networks all my internal PCs are always sending DNS queries with port 53 to the internet. I want all those PCs' IP addresses and the DNS queries, they are sending to the internet. I have a Fortigate 100E; 2 ISPs; 1 LAN (192.168.1.0/24); No VLAN. For additional info: My Firewall's LAN port IP is - 192.168.1.1 and all the client are having that IP as their default gateway. Can anyone help me out?

Best answer by Hosemacht

Hey there,

just set up a proxyoption with dns enabled, add it to the regarding policy and enable log-allowed-traffic.

HosemachtAnswer

Explorer

Hey there,

just set up a proxyoption with dns enabled, add it to the regarding policy and enable log-allowed-traffic.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded