DNS and NTP Interception

Many devices ignore your network's DNS and NTP servers and require your firewall to allow their traffic out to arbitrary servers on the internet. The ports that must be allowed can be used by VPNs to bypass your security and monitoring policies. To combat this threat, DNS and NTP requests are transparently intercepted and redirected to the local servers, rather than granting unrestricted access to the internet.