Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 8 replies
  • Subscribers 28 subscribers
  • Views 13553 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN unable to resolve hostname

Billy Lo1

i am new to sophos firewall XG115, i have follow this guide https://community.sophos.com/kb/en-us/122769#Configuring%20advanced%20SSL%20VPN%20settings,

and read similar problem https://community.sophos.com/products/xg-firewall/f/network-and-routing/97774/dns-over-ssl-vpn,

but still access local resources by ip only, can't access using hostname, could anyone help? thanks.



This thread was automatically locked due to age.
Parents
  • 0

    Hi  

    Is DNS server IP has been added to SSL VPN configuration?

    Could you try to capture packets on the XG firewall from the SSL VPN user machine when you try to access the server using URL?

    Please check whether the DNS request or URL requests coming to the firewall or not.

    It may be possible that when you access the URL, it will use the default ISP of the user system instead of sending traffic to the XG firewall.

    What DNS IP is configured in the user system?

  • 0 in reply to Keyur

    yes, i put my dns server ip(e.g. 192.168.1.10) into IPv4 DNS primary in SSL VPN Setting page

    it seems using default isp dns, but i check in vpn client network connection detail, DHCP server is using SSL VPN ip i set in firewall, and DNS is using 192.168.1.10

  • +1 in reply to Billy Lo1

    In the SSL VPN settings have you set the local domain name ?

  • +1 in reply to Billy Lo1

    Billy,

    each time you edit the SSL VPN configuration, you need to download the VPN Client configuration from the user portal, otherwise the SSL VPN Client is not updated with latest changes. As suggested by others, make sure to fill the domain name in the SSL VPN Settings and put the correct DNS servers. Re-download the ssl vpn client config and try again.

    Thanks

  • 0 in reply to Ross Baines

    just try to set domain name, it can connect using hostname, but it's seem like auto adding the post-suffix at the end of hostname, it's not using the internal DNS at all, anyway, it's ok. thanks.

Reply Children
No Data