SRX

Expand all | Collapse all

UTM web-filtering status: DNS resolve failure

  • 1.  UTM web-filtering status: DNS resolve failure

    Posted 02-27-2021 18:50
    Hi I am running Juniper Enhanced Web Filtering, with correct licensing wf_key_websense_ewf

    I have name-servers configured in the default routing table and the default table nats to the internet via another routing instance which is working. However below I am getting a DNS error:

    show security utm web-filtering status
    UTM web-filtering status:
    Server status: Juniper Enhanced using Websense server DOWN
    Status reason: DNS resolve failure or wrong host(server:rp.cloud.threatseeker.com)

    However, I can ping and resolve rp.cloud.threatseeker.com without issues. This is the same for any other names I try to resolve, i.e google, amazon ect..

    PING rp.cloud.threatseeker.com (85.115.52.140): 56 data bytes
    64 bytes from 85.115.52.140: icmp_seq=0 ttl=50 time=51.622 ms
    64 bytes from 85.115.52.140: icmp_seq=1 ttl=50 time=60.676 ms
    64 bytes from 85.115.52.140: icmp_seq=2 ttl=50 time=58.239 ms
    64 bytes from 85.115.52.140: icmp_seq=3 ttl=50 time=58.654 ms
    64 bytes from 85.115.52.140: icmp_seq=4 ttl=50 time=53.399 ms

    Any ideas if i could have missed something?


  • 2.  RE: UTM web-filtering status: DNS resolve failure

    Posted 02-27-2021 20:50
    After research turns out the following is required to get this working in a different routing instance, alongside normal utm configuration.

    set security utm default-configuration web-filtering juniper-enhanced server host rp.cloud.threatseeker.com
    set security utm default-configuration web-filtering juniper-enhanced server port 80
    set security utm default-configuration web-filtering juniper-enhanced server routing-instance INTERNET
    set security utm dns routing-instance INTERNET-BREAKOUT