SonicOS 7 Rules and Policies

Access Rules for DNS Proxy

Access Rules for DNS Proxy are supported by SuperMassive 9800 firewalls.

When DNS Proxy is enabled on an interface, one Allow Access Rule is added automatically with these settings:

  • From Interface and To Interface are the same.
  • Source is Any.
  • Destination is the interface IP.
  • Service is DNS (Name Service) TCP or DNS (Name Service) UDP.
  • Has the same attributes as other MGMT rules:
    • It cannot be disabled.
    • Only the Source IP can be modified to allow a less aggressive source than Any to be configured.

If DNS Proxy over TCP is enabled, another Allow Rule is auto‐added.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.