Hi everyone,
We recently merged with another company, and are changing the way our networks connect. Not going into great detail, I'll just get straight to the problem:
We have a location behind an SRX650, and dynamic DNS registration refuses to work properly. The DNS server which is on a different network does not get any DNS updates from this location. All of our other locations that have SRX210's behind them (but don't have any firewall rules) have no problems. This has ALWAYS been the problem since I started working here the last couple of years. The interface that leads to the network containing the DNS server, is part of the trust group, and anything going from trust to trust has a rule that allows any, any, any. I added explicit DNS allow rules just to be sure - but that had no effect. All these machines have all been re-imaged, and have all the same group policy settings. I'm 100% sure that it's the SRX blocking some kind of traffic - but the rules look right.
What am I missing?
Thanks for any input.