Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Martin_Hancock
New Contributor II

Fortiview in Fortianalyser - SSL VPN errors

Hello

I am tweaking my Fortigate to work with Fortianalyser and i am noticing that under my Top Threats i have a lot of DNS errors from my SSL VPN

 

 

I am unsure as to what could be causing this.

1 REPLY 1
Kush_Patel
Staff
Staff

What is the IP address of DNS server configured under SSL VPN configuration ?  Might need more info from this log.

 

It cloud be this : This is an expected behavior where the firewall logs any invalid DNS traffic.

Invalid DNS traffic would be UDP packets on port 53 that are not DNS traffic, packets which are oversized, bad checksum etc or this happens also if the DNS query is not successful returns any other status than NOERROR.

 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-DNS-error-logs-showing-in-FortiAnalyzer/ta...

Labels
Top Kudoed Authors