Newbie to watchguard, why are all of these getting blocked

[ash1057]

Just would like to know why my DNS request are getting blocked? 68.4.16.30 is our providers DNS. thanks in advance


10/11/04 09:52 firewalld[108]: deny out eth1 69 udp 20 128 192.168.0.118 68.4.16.30 4938 53 (ADMIN)
10/11/04 09:52 firewalld[108]: deny out eth1 61 udp 20 128 192.168.0.118 68.4.16.30 4950 53 (ADMIN)
10/11/04 09:53 firewalld[108]: deny in eth0 56 udp 20 59 68.4.16.30 68.225.20.66 53 36668 (default)
10/11/04 09:53 firewalld[108]: deny in eth0 56 udp 20 59 68.4.16.30 68.225.20.66 53 36668 (default)
10/11/04 09:53 firewalld[108]: deny in eth0 56 udp 20 59 68.4.16.30 68.225.20.66 53 36668 (default)

 

[mrn]

The first 2 are DNS lookups on port 53 (udp) it looks like the ADMIN rule is stopping the lookup from getting out.

The next 3 are all from a host 68.4.16.30 trying to send udp packets to 68.225.20.66 on port 36668 rying looking at the default rule and add the from host if you need to.

Mike

"A foolproof method for sculpting an elephant: first, get a huge block of marble, then you chip away everything that doesn't look like an elephant.

 

[dennishixson]

how do I change the default rule?