Hi,
In the logs and captures we see A record and AAAA, both are coming almost at the same time and client is using the same source port to send these two DNS queries.
then the DNS proxy debugs are showing the type 1 which is for the A record, we don't see any type 28 which is for AAAA, firewall creating a socket to send DNS query to the server but we don't see any further processing, mostly a response. Then firewall is retrying after 5 seconds.
We need to see whether the firewall is sending the DNS querie to actual DNS servers or NOT and if there are replies. We can check the same using the flow basic and the snoop, use Eth0/8.10's IP in the filter as it's source interface in the DNS config.
BTW, do you see any error etc in the 'get event' or in the 'get log sys' relevant to these failed requests.
Thanks,
Vikas