Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Web Console Limitation for Additional DNS Servers in InterScan Web Security Virtual Appliance (IWSVA) 6.5

    • Updated:
    • 21 Nov 2019
    • Product/Version:
    • Interscan Web Security Virtual Appliance 6.5
    • Platform:
Summary

The InterScan Web Security Virtual Appliance (IWSVA) web console only allows to specify two DNS servers. Machines on other domains cannot open URLs when passing through IWSVA proxy due to DNS resolution issues.

This article provides the steps on how to manually add DNS servers to be setup for IWSVA.

Details
Public

On the web console, DNS server settings are configured in:

  • Administration > Network Configuration > Network Interface

    Network Interface

  • Go to the IPv4 Protocol tab and under IPv4 Miscellaneous Setting and configure the two DNS servers:

    • Primary DNS server
    • Secondary DNS server

    Configure 2 DNS servers

If your environment requires additional DNS servers to be set-up for IWSVA (ex. using multiple domains with individual DNS servers), these servers may be added by using the CLI and verified though the custom command line interface shell CLISH.

  1. Add the DNS servers manually using CLI:

    1. Log in to IWSVA CLI as root.
    2. Enter “vi /etc/resolv.conf” using vi editor to add DNS servers to resolv.conf file.

      add DNS servers1

    3. Press the “Insert” key or letter “I” to enable editing.
    4. Add the DNS servers using the following format:

      nameserver <ip_address>

      For example: nameserver 8.8.8.8

      add DNS servers2

    5. Press the “Esc” key to exit editing mode.
    6. Enter “:wq!” to save the file and exit vi editor.

      You can also add more than two (2) DNS entries in the /etc/resolv.conf file, as explained in the KB article: Configure IP address settings in InterScan Web Security Virtual Appliance (IWSVA).

  2. Verify that IWSVA registers the configured DNS servers via CLISH:

    1. Log in to IWSVA CLI as root.
    2. Enter “clish" to go to CLISH interface.
    3. Enter “enable” to enable privileged mode.
    4. Enter “show network dns” to display registered DNS server.
    5. Verify that your servers are listed as DNS1, DNS2, DNS3, etc.

      Verify that servers are listed

  3. Restart the network service:

    1. Enter “exit” to leave CLISH privileged mode.
    2. Enter “exit” again to leave CLISH and go back to CLI.
    3. Enter “service network restart” to restart the network service.

      Restart

Premium
Internal
Rating:
Category:
Configure
Solution Id:
000155804
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.