DNS Forwarder status

In Security Connector, you can view the health and traffic statistics of DNS Forwarder. To view the status and traffic statistics of DNS Forwarder, see View Security Connector health status.

Health status

This table describes health checks that are completed for DNS Forwarder and the mitigation steps that are suggested to resolve a failure. If you cannot resolve an issue, contact Akamai Support.

Operation Description Resolution to Failure
Enterprise Resolver Configuration Checks to see whether corporate resolvers are configured as Security Connector DNS name servers Make sure that you configure the corporate resolvers as the Security Connector DNS name servers. For more information, see Configure DNS name servers.
Enterprise Resolver Reachability Checks to see that corporate DNS resolvers are reachable.
  • Review the DNS Name Server configuration.
  • Confirm that corporate DNS resolvers are available.
Akamai DNS Resolver TCP Connectivity Checks that DNS Forwarder can reach ETP Cloud using TCP TCP connectivity issues are likely related to your firewall configuration. Confirm that your organization's firewall allows traffic from DNS Forwarder.
Akamai DNS Resolver DoT Status Checks that DNS Forwarder can establish a TLS connection with ETP Cloud for DNS over TLS (DoT).
  • Confirm that your firewall allows outbound TCP port 443 for hostname *.r11.dot.dns.akasecure.net and *.akaetp.net with dot as the Application-Layer Protector Navigation (ALPN). This configuration is required for DoT connections.
  • Review the configuration of the management interface.

Traffic statistics

In addition to performing a health check, the DNS Forwarder Status area of the Security Connector also reports DNS Forwarder traffic statistics in five minute intervals. These statistics are based on activity that occurred in the last five minute interval. The reported time is provided. The statistics automatically update with the next interval.

This data includes the total number of:
  • Queries received by DNS Forwarder
  • Queries that received a response from DNS Forwarder
  • Queries that are resolved by the corporate DNS resolver
  • Queries that are resolved with ETP Cloud as a result of DNS over TLS (DoT)
  • Errors