SD-WAN

 View Only

  • 1.  Viewing EdgeConnect DNS cache

    Posted Feb 20, 2025 08:11 AM

    Hi

    Im looking to see if anyone can confirm as to whether its possible to look into what a EdgeConnect has cached for DNS snooping. Looked through commands and unable to find anything that allows this.

    Is this something that would be seen in a sysdump / shell / or not something thats possible

    Matt



  • 2.  RE: Viewing EdgeConnect DNS cache

    Posted 6 days ago

    Bump.    This is an important capability for anyone trying to troubleshoot using this KB:    

    https://silverpeaksystems.my.salesforce.com/articles/KB/Flows-intermittently-fail-to-match-against-application-matching-on-domain-Matching-on-Domain


    Original Message


  • 3.  RE: Viewing EdgeConnect DNS cache

    Posted 6 days ago

    You can use the CLI command: show dns cache

    You can also examine the Monitoring > Flows report in the UI and for any given flow of interest, you can click on the details 'i' button.
    In there, you can examine the AVC/DNS tab. There you can see the first pkt source and dest domains recorded for the flow.
    In more recent versions, you can also see the 'Flow Decision' tab which takes you through the entire policy chain applied to that flow.


    Original Message


Related Content