Wednesday, October 2, 2019

Cisco SG350XG-24F Crash from request to neighboring DNS server

Hi all,

My work place have a few building that use HP 5130 as a distribution switch, all of those HP 5130 connects to a single Cisco SG350XG-24F as the (new) main switch/router (replacing an aging HP 5500). The Cisco connects to a Mikrotik CCR1036 as a main gateway/firewall/router.

Since Mikrotik NAT reflection is causing problems, we used a DNS interception (between main switch to gateway) to redirect request to a domain name with public IP to an internal IP. This used to work when using the old A5500 (for some years), but it did not works with Cisco SG350XG (it will crash (then reboot) the Cisco.)

Just for a test, I enable DNS service (allow remote request) on the mikrotik CCR gateway and tried to query it from a client connected directly to the Cisco ( a simple dig @gateway reddit.com) , as soon as I hit enter, the Cisco would blink all its light then reboot.

Does anybody have any idea about what's going on?



No comments:

Post a Comment