Sophos firewall is blocking DNS queries

Discussions around the setup, operation, replacement, and disposal of clerk computers, not to include using MLS
aclawson
Senior Member
Posts: 712
Joined: Fri Jan 19, 2007 6:28 pm
Location: Commerce Twp, MI

Sophos firewall is blocking DNS queries

Postby aclawson » Sun Nov 11, 2012 5:31 pm

I'm working on the stake clerk machine at the moment, and DNS lookups are failing.

The DNS servers configured by the DHCP server (one of the new firewalls) are, in order

8.8.8.8
4.2.2.2
216.49.176.201

If I stop the service Sophos Client Firewall, DNS lookups work normally. If I restart the service DNS lookups stop working again.

david.north
New Member
Posts: 28
Joined: Wed Dec 28, 2011 2:10 pm
Location: Lehi, UT, USA

Re: Sophos firewall is blocking DNS queries

Postby david.north » Mon Feb 25, 2013 5:58 pm

Were you able to resolve this problem outside of turning off the Sophos firewall?
We just experienced a similar problem this past Sunday on all three of the clerk computers in one building.

User avatar
johnshaw
Senior Member
Posts: 1839
Joined: Fri Jan 19, 2007 1:55 pm
Location: Syracuse, UT

Re: Sophos firewall is blocking DNS queries

Postby johnshaw » Tue Feb 26, 2013 7:38 am

If you access the Sophos Firewall Logs through the management tool you should be able to see denies for port 53 and it will tell you which rule it is. If a rule has been pushed to Sophos we need to escalate it to the GSC and they can get in touch with someone who can get in touch with someone that will/may address the issue in the future at some point.
“A long habit of not thinking a thing wrong, gives it a superficial appearance of being right, and raises at first a formidable outcry in defense of custom.”
― Thomas Paine, Common Sense

david.north
New Member
Posts: 28
Joined: Wed Dec 28, 2011 2:10 pm
Location: Lehi, UT, USA

Re: Sophos firewall is blocking DNS queries

Postby david.north » Tue Feb 26, 2013 9:13 am

JohnShaw wrote:If you access the Sophos Firewall Logs through the management tool you should be able to see denies for port 53 and it will tell you which rule it is. If a rule has been pushed to Sophos we need to escalate it to the GSC and they can get in touch with someone who can get in touch with someone that will/may address the issue in the future at some point.

Great advice - I'll check the logs and let you know what I find.

aclawson
Senior Member
Posts: 712
Joined: Fri Jan 19, 2007 6:28 pm
Location: Commerce Twp, MI

Re: Sophos firewall is blocking DNS queries

Postby aclawson » Mon Mar 04, 2013 9:32 am

Did you see anything in the logs?

david.north
New Member
Posts: 28
Joined: Wed Dec 28, 2011 2:10 pm
Location: Lehi, UT, USA

Re: Sophos firewall is blocking DNS queries

Postby david.north » Mon Mar 04, 2013 9:36 am

aclawson wrote:Did you see anything in the logs?

All applications were blocked because of an Invalid Checksum. Global support was unsure how to proceed, and recommended for our circumstance to allow all traffic through the Sophos Firewall and manually set DNS servers.

aclawson
Senior Member
Posts: 712
Joined: Fri Jan 19, 2007 6:28 pm
Location: Commerce Twp, MI

Re: Sophos firewall is blocking DNS queries

Postby aclawson » Mon Mar 04, 2013 10:09 am

Sophos is proving to be an unreliable choice. Unfortunately we're probably locked into an <x> year contract where <x> = 3-5 years.

russellhltn
Community Administrator
Posts: 20778
Joined: Sat Jan 20, 2007 2:53 pm
Location: U.S.

Re: Sophos firewall is blocking DNS queries

Postby russellhltn » Mon Mar 04, 2013 10:44 am

dnorthut wrote:All applications were blocked because of an Invalid Checksum.


Sounds like uninstall/reinstall time. Local Unit Support can help you with that.
Have you searched the Wiki?
Try using a Google search by adding "site:tech.lds.org/wiki" to the search criteria.


Return to “Clerk Computers”

Who is online

Users browsing this forum: No registered users and 1 guest