| Description |
This article describes how to fix the DNS Query showing ‘dns-response’ with values of Category:‘255’ and Category Description: ‘Unknown’. under FortiGate -> Log&Report -> DNS Query. |
| Scope |
FortiGate v6.2.x. |
| Solution |
- Make sure to configure the DNS setting and DNS filter profile including putting the setting in the firewall policy ID correctly.
-Under FortiGate -> Log&Report -> DNS Query, for 'DNS Type' : dns-response packet, it shows with 'Action':: pass with the correct firewall policy ID wanted. But it shows the value of 'Category' column with ‘255’ and the value of 'Category Description' column with ‘Unknown’
- Everything works fine and the DNS setting is properly configured , the FortiGate can connect to FortiGuard service, and FortiGate gets the correct rating.
- Check and correct the CLI commands as below: It is possible to do it with CLI commands of the FortiGate via Telnet,SSH , or CLI Console on GUI of FortiGate.
FGT # config system fortiguard FGT (fortiguard) # set sdns-server-ip "208.91.112.220 173.243.140.53 210.7.96.53" FGT (fortiguard) # end
Then it may show the correct values in 'Category' column and 'Category Description' column for 'DNS Type': dns-response packet as below.
 |
Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Spring Badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Support Forum
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiADC
- FortiAIOps
- FortiAnalyzer
- FortiAP
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEdgeCloud
- FortiEDR
- FortiEndpoint
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiGuest
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNDR (on-premise)
- FortiNAC-F
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPresence
- FortiPortal
- FortiProxy
- FortiRecon
- FortiSRA
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiTester
- FortiSwitch
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiAppSec Cloud
- Lacework
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
- Fortinet Community
- Knowledge Base
- FortiGate
- Technical Tip: How to fix DNS Query showing ‘dns-r...
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2025 Fortinet, Inc. All Rights Reserved.