I think Martin has it right that it is a feature of your 580.
This website says that you can unmap the dns service from the affected WANs.
Otherwise I would look at the inbound service firewall rules. I don’t have a peplink with that feature to test.
1 Like