Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
hazim
Staff
Staff

Created on ‎03-09-2023 12:15 AM

Article Id 248526

Technical Tip: DNS traffic will not show in the debug if using set source interface and HA-direct enabled

Description This article describes the DNS traffic will not show in the debug if using a set source interface and HA-direct enabled.
Scope FortiGate version 6.4, 7.0, and 7.2 above.
Solution

When turning on HA-direct in the HA configuration and using the set source interface for DNS configuration, DNS traffic will not be visible in the debug going out to the configured port:

 

hazim_0-1678325870154.png

 

When querying the DNS and debug sniffer will not show any traffic:

 

hazim_0-1678325870154.png

 

To solve this issue, it is necessary to remove the set source interface if enabling the HA-Direct configuration in the FortiGate. Then the DNS traffic will be sent out to the expected port and able to see in the debug sniffer. 
378
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.