Hello,
I’ve increased UDP timeout because of devices behind the router doing NAT traversal (I’m not able to tune keep alive on these devices). As a side effect there are constantly a lot of DNS connection entries using the longer UDP timeout. Normally the majority of UDP connections are DNS.
Other routers/firewalls I’m used to work with have DNS tracking. As soon as a DNS reply has been seen the connection entry is removed. I was a little bit surprised to see all these long lasting DNS connection entries that are using up resources.
Can we have DNS connection tracking on RouterOS? Or at least the possibility to adjust the timeout for DNS, regardless of reply received?
Bas