Operational Defect Database
BugZero found this defect 1962 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
WatchGuard Technologies | kA10H000000g3UPSAY
Log messages for DNSWatch forwarding cannot be disabled
Last update date:
1/4/2019
Affected products:
Firebox M200
Firebox M300
Firebox M270
Firebox M370
Firebox M470
Firebox M570
Firebox M670
Firebox M290
Firebox M390
Firebox M400
Firebox M500
Firebox M440
Affected releases:
All
Fireware
12.x
12.0.x
12.1.x
12.1
12.1.1
12.1.3
12.10.x
12.2.x
12.3.x
12.4.x
Fixed releases:
All
Description:
Issue
If you use DNSWatch on your Firebox, the Firebox always sends log messages for DNSWatch forwarding, even if you disable logging for DNSWatch forwarding. Because of this, you could see a large number of log messages that look like this: 2018-10-23 16:42:20 Allow 10.0.1.2 198.51.100.2 dns/udp 49735 53 1-Trusted Firebox DNS Forwarding 69 128 (Internal Policy) proc_id="firewall" rc="100" msg_id="3000-0148" dst_ip_nat="10.0.1.1" record_type="A" question="collector.threat-dr.com"
Workaround/Solution
No workaround exists at this time.
