First question would be does the firewall support dns names instead IP's in its source and destination rule sets? Also enabling host inbound services dns i doubt would work, as the firewall will request a dns lookup from a random port, and the dns server will reply to that random port, look at your session table under self traffic policy. I would suggest you close that port as you open you RE to dns from the internet.
↧