Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Control » INCOMING RULE FROM DYNDNS HOST
  •  
FLCM

Messages: 2
Karma: 0
Send a private message to this user
Hello, i'm trying to create a rule to allow incoming traffic from a remote host registred with a dynamic dns on the internet. (Kerio Connect 7.4 patch 1)

2 problems:
a) The DNS cache from Kerio connect does not record correct TTL from DNS server
The DNS from my provider define a 60sec ttl but kerio register a 24h ttl in his cache

b) the rule for incoming data from remote host is based of a host defined in adress group:
the host "remote.homeip.net" is allowed but HOW AND WHEN the correct address will be used in the traffic rule if the address is changed ? is there also a TTL of 24h of something else ?

Is there a way to define somewhere the TTL default time?
I'm using VMware appliance for testing.

Thanks for yours ideas...
  •  
silars

Messages: 429
Karma: 59
Send a private message to this user
Do you mean Control or Connect? This is the Control forum.
  •  
FLCM

Messages: 2
Karma: 0
Send a private message to this user
Sorry for mistake, it's effectivly Kerio CONTROL.

I have also verify documentation of the product about the rule based on a hostname.
The doc say that hostname is verified each time a rule is processed but i have configureg debug message log to see dns queries and nothing appear when processing rules...
  •  
silars

Messages: 429
Karma: 59
Send a private message to this user
Personally, since you are using VMs, I'd create a new VM just to host my DNS. This will give you additional flexiblity that Kerio won't be able to provide.

This is what I do in my environment.
  •  
Goran

Messages: 326
Karma: 5
Send a private message to this user
You can change DNS cache time on CFG file.

Question cannot be stupid, but some of the answers can.
Previous Topic: About Kerio Control 3.2
Next Topic: Impossible mask
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Tue Aug 22 11:21:14 CEST 2017

Total time taken to generate the page: 0.00493 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.