DNS-Proxy: General Settings
In the DNS-Proxy general settings, you can modify the two protocol anomaly detection rules. We recommend that you do not change the default rule settings. You can also select whether to create a traffic log message for each transaction.
DNS-Proxy Action general settings in Fireware Web UI
DNS-Proxy Action general settings in Policy Manager
Not of class Internet
Select the action when the proxy examines DNS traffic that is not of the Internet (IN) class. The default action is to deny this traffic. We recommend that you do not change this default action.
Badly formatted query
Select the action when the proxy examines DNS traffic that does not use the correct format.
An alarm is a mechanism to tell users when a proxy rule applies to network traffic. Alarm notifications are sent in an SNMP trap, email, or a pop-up window.
To configure an alarm for this event, select the Alarm check box.
For more information about proxy alarms, see Proxy and AV Alarms.
For more information about notification messages, see Set Logging and Notification Preferences.
To send a log message to the traffic log for this event, select this check box.
Enable logging for reports
Select this check box to create a traffic log message for each transaction. This option creates a large log file, but this information is very important if your firewall is attacked. If you do not select this check box, detailed information about DNS-proxy connections does not appear in your reports.
Override the diagnostic log level for proxy policies that use this proxy action
To specify the diagnostic log level for all proxy polices that use this proxy action, select this check box. Then, from the Diagnostic log level for this proxy action drop-down list, select a log level:
The log level you select overrides the diagnostic log level that is configured for all log messages of this proxy policy type.
For more information about the diagnostic log level, see Set the Diagnostic Log Level.