Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 19 replies
  • Subscribers 28 subscribers
  • Views 4631 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNS NAT

Regex

Hi !^^

There is a LocalDNS(ADGuard) which has 192.168.3.250 (blocking ADS etc)
Im using Sophos XG Home with SSLVPN which uses Local DNS as well.

Ive got a NAT policy which should Translate GOOGLE DNS addresses to my LocalDNS to prevent overpassing and to have adquard protection etc.

NAT policy looks like this:

 

As i understand all traffic requested to 8.8.8.8 and 8.8.4.4 should be translated to my localDNS ?

If so, If im trying to ping googledns im getting Request timeout ;(

 

What im doing wrong thx for help :)

 



This thread was automatically locked due to age.
Parents
  • 0

    Hi Roman,

    let us examine what your are trying to do. NAT all DNS traffic, very good, but your firewall/NAT rule does not allow ping to your test will fail.

    If you want to test your DNS rule using ping you will  need to add ping to it.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Sure, Ive been testing it adding ping to NAT policy - no positive result. "Request time out" ;)
    So i should get responds while im pinging 8.8.8.8 Am I right ? Cuz with NAT implemented in XG i got a little bit confused ^^

    __________SETUP___________

    HP Small Form Factor:  i5 4Cores, 8Gb of RAM.
    Intel Network Card 5x Eth
    SSD: 256Gb

  • 0 in reply to Regex

    Hi Roman,

    you will also need the ping in the firewall rule.

    A copy of my NAT rule, there is also a KBA on this subject.

     

     

     

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    So you are using this policy to NATing DNS traffic ? As I want ? -> if so its VERY weird from logical perspective as Sophos named it ^^

    __________SETUP___________

    HP Small Form Factor:  i5 4Cores, 8Gb of RAM.
    Intel Network Card 5x Eth
    SSD: 256Gb

  • 0 in reply to Regex

    There is something wrong with my firewall rule. I changed it a week ago and since then it not working.

    Now that you raise that question, the logviewer shows the traffic as still going to 8.8.8.8 even after going through the NAT rule.

    I need to find the original document that I built the rule using that configuration.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to rfcat_vk

    Ok, well ill also try figure out how to solve it. But look a thos Video.

    There is a short time where he shows how to do it.

    FROM 5:30

    __________SETUP___________

    HP Small Form Factor:  i5 4Cores, 8Gb of RAM.
    Intel Network Card 5x Eth
    SSD: 256Gb

  • 0 in reply to Regex

    Thank you for finding that video, that was part of what I was referring to and there should be a document showing step by step as shown in the video.

    I think I saw it in the EAP which is no  longer accessible. I am seeing the redirects, just not the translation.

    Hopefully one of the Sophos support staff will assist.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • 0 in reply to Regex

    Thank you for finding that video, that was part of what I was referring to and there should be a document showing step by step as shown in the video.

    I think I saw it in the EAP which is no  longer accessible. I am seeing the redirects, just not the translation.

    Hopefully one of the Sophos support staff will assist.

    Ian

    XG115W - v19.5.1 mr-1 - Home

    If a post solves your question please use the 'Verify Answer' button.

Children
No Data
Cookie Information Banner