Issue setting up dns proxy on LTM

Question

I am having an issue setting up DNS proxy on an LTM. I have added my DNS server to the BIND Forwarder Server List and have started named as well. When I point one of my servers dns requests to the floating IP on the F5 i get the following response back: 
&nbsp;  
&nbsp; nslookup www.whatever.com x.x.x.x (floating ip on the f5) 
&nbsp; Server:         x.x.x.x 
&nbsp; Address:        x.x.x.x53 
&nbsp;  
&nbsp; Non-authoritative answer: 
&nbsp; *** Can't find www.whatever.com: No answer 
&nbsp;  
&nbsp; If I ssh into the f5 and try and resolve the same name to the same dns server I get a successful response as follows: 
&nbsp;  
&nbsp; www.whatever.com     canonical name = whatever.com. 
&nbsp; Name:   whatever.com 
&nbsp; Address: x.x.x.x 
&nbsp;  
&nbsp;  
&nbsp; Any thoughts? 
&nbsp;  
&nbsp; Thanks, 
&nbsp; Bob

the_bhattman · Answer

Hi Bob, 
&nbsp;   Have you looked into the self address of the BIGIP to make sure port lockdown is either set to Allow Default or open for UDP 53? 
&nbsp;  
&nbsp; Hope this helps 
&nbsp; CB 
&nbsp;  &nbsp;

hoolio · Answer

I ran into this and found the fix is described in SOL5299: 
&nbsp;  
&nbsp; SOL5299: The BIG-IP system does not forward DNS requests after configuring the BIND Forwarder Server List   
&nbsp; https://support.f5.com/kb/en-us/solutions/public/5000/200/sol5299.html 
&nbsp;  
&nbsp; Aaron

Forum Discussion

Issue setting up dns proxy on LTM

2 Replies

Welcome! a la Communidad DevCentral LATAM de F5!

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

Recent Discussions

R4800 snmp issues.

F5 XC JWKS auto update

PCI Compliance and ASM

irule for redirect and header injection

What happens if I activate only ASM without provisioning LTM?

Related Content

Proxy Protocol v2 Initiator

SSH forward proxy

Proxy SSL unavailable suite (47) issue

Intelligent Proxy Steering - Office365

Proxy Protocol Initiator

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS