Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Zenarmor (Sensei)
»
Apps Breakdown 90% DNS
« previous
next »
Print
Pages: [
1
]
Author
Topic: Apps Breakdown 90% DNS (Read 2226 times)
SuperMiguel
Newbie
Posts: 22
Karma: 0
Apps Breakdown 90% DNS
«
on:
September 02, 2022, 06:35:38 am »
I have like 10 cameras that are just making DNS requests like there is no tomorrow, so 90% of my app breakdown are dns request from this cameras. The firewall rules for that VLAN are block all, but i guess DNS requests still making it to Zenarmor, should i just delete that VLAN from the Zenarmor list? or is there a way to get rid of all them requests. Thanks!
Logged
dinguz
Sr. Member
Posts: 275
Karma: 13
Re: Apps Breakdown 90% DNS
«
Reply #1 on:
September 02, 2022, 07:25:26 pm »
This happens probably because the default view in the dashboard displays the number of Sessions. Because DNS is UDP based, with lots of small packets, and every packet is a session, these numbers rise quite fast, giving a skewed view.
If you change the view to Volume, it gives a better impression of the amount of traffic, and the distribution thereof. You'll probably come to the conclusion that this is nothing to worry about.
«
Last Edit: September 04, 2022, 12:42:27 pm by dinguz
»
Logged
In theory there is no difference between theory and practice. In practice there is.
SuperMiguel
Newbie
Posts: 22
Karma: 0
Re: Apps Breakdown 90% DNS
«
Reply #2 on:
September 03, 2022, 02:53:31 pm »
Is there a way to block all of these requests? so they dont show?
Logged
Taunt9930
Full Member
Posts: 126
Karma: 3
Re: Apps Breakdown 90% DNS
«
Reply #3 on:
September 03, 2022, 08:03:15 pm »
Quote from: SuperMiguel on September 03, 2022, 02:53:31 pm
Is there a way to block all of these requests? so they dont show?
Add a filter, surely?
Logged
sy
Hero Member
Posts: 598
Karma: 44
Re: Apps Breakdown 90% DNS
«
Reply #4 on:
September 05, 2022, 08:41:05 pm »
Hi,
Do you want to block them or just hide them from the reports?
Logged
SuperMiguel
Newbie
Posts: 22
Karma: 0
Re: Apps Breakdown 90% DNS
«
Reply #5 on:
September 07, 2022, 09:56:32 pm »
Block them, These are PoE cameras that dont have internet access and shouldnt make any DNS requests...
I added firewall rules to reject All IN/Out traffic from this VLAN, but still making it to Sensei, I click the block button on Sensei and they still show as blocked
I got tired of it one day and even removed the vlan from sensei and added the vlan to the Exempted VLANs & Networks and they still show... So not sure whats going on...
Logged
sy
Hero Member
Posts: 598
Karma: 44
Re: Apps Breakdown 90% DNS
«
Reply #6 on:
September 09, 2022, 02:52:22 pm »
Hi,
Can you share a bug report? They shouldn't be shown if you added in Exempted VLAN and Network.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Zenarmor (Sensei)
»
Apps Breakdown 90% DNS