| Description |
This article describes the inability to save static domain filter entry in DNS filter with type Wildcard. |
| Scope | FortiGate. |
| Solution |
Create a new static domain filter with the existing DNS filter: Go to Security Profiles -> DNS Filter -> Select existing DNS Filter named dnsfilter1 -> Edit.
Under Static Domain Filter -> Enable Domain Filter -> Create New -> Set domain to “test.com/*” and type to Wildcard -> OK -> OK.
After checking the DNS filter named dnsfilter1 again, the Domain filter created was not saved.
This also applies when creating a new DNS filter, the new DNS filter will not be saved if creating a static domain filter at the same time.
To verify the applied configuration change on the CLI we are getting the below output. Enable CLI Debug:
diagnose debug cli 8 diagnose debug enable
The solution is to remove the '/' character on the domain filter. Change 'test.com/*' to 'test.com*'.
Below is the CLI debug output upon saving successfully with the domain of 'test.com*'.
Related articles: |
