From 64493b60af9cf6b68e1c98f5eb90a04260a46596 Mon Sep 17 00:00:00 2001
From: Cuong Manh Le <cuong.manhle.vn@gmail.com>
Date: Thu, 10 Apr 2025 17:31:16 +0700
Subject: [PATCH] Updated Known Issues (markdown)

---
 Known-Issues.md | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/Known-Issues.md b/Known-Issues.md
index 51af686..eac57e5 100644
--- a/Known-Issues.md
+++ b/Known-Issues.md
@@ -5,8 +5,18 @@ This router supports armv7 architecture, however the `linux_armv7` binary [will
 
 ## UDM Pro
 
+### Static DNS
+
 The DHCP "DNS Server" settings must be set to "Auto", so LAN clients' DNS will be set correctly.
 
 Having static DNS (see image below) setting with external DNS servers causes client requests not routed to `ctrld` listener.
 
-![image](https://github.com/Control-D-Inc/ctrld/assets/4304764/d34ae2dc-4a86-4751-85ed-74dfda7080c5)
\ No newline at end of file
+![image](https://github.com/Control-D-Inc/ctrld/assets/4304764/d34ae2dc-4a86-4751-85ed-74dfda7080c5)
+
+### Policy-Based Routing
+
+[Policy-Based Routing](https://help.ui.com/hc/en-us/articles/12566175125783-UniFi-Gateway-Policy-Based-Routing) is a feature that allows UDM users to route traffic to specific destination based on the source of the traffic.
+
+When Policy-Based Routing (PBR) is implemented on the network, firewall rules are typically configured to redirect DNS requests to the dnsmasq instance associated with the WAN interface. However, this dnsmasq instance operates with a configuration specifically generated for WAN connectivity, limiting the ability to persistently integrate ctrld's configuration. Consequently, client DNS requests will not be routed to the ctrld listener.
+
+To resolve this, users must either modify the existing firewall rules or create new rules with higher priority to direct DNS traffic to the ctrld listener. Modifying UDM configurations directly, outside of the web interface, carries significant risk and is not officially supported. Such modifications may lead to system instability or failure, and should be undertaken with extreme caution.
\ No newline at end of file