Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 1368 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG firewall v18 - DNS help

Steve Savenelli

I have Sophos XG Firewall v18 all setup and running well, but I am struggling with getting DNS to function.  I understand the disconnect between DNS and DHCP and HOPEFULLY Sophos will add this very basic function to the next release, but my issue is around internal systems.

Right now I have 3 test hosts defined, no reverse DNS, just host & IP.  I have DNS pointing to external DNS servers (2) and DHCP feeding the vlan specific gateways as their DNS server.

No matter how I add the host, I can not ping it by name, IP yes.. not by name. Did I miss a setup or parameter?  I should not have to go to an external DNS server (although I would like the linking between DHCP and DNS)



This thread was automatically locked due to age.
Parents
  • 0

    Hi Steve,

    you will need to add an entry in the DNS host entry under Networks. Do not tick Publish on WAN.

    You might also like to add a FQDN entry for the server for completeness.

     

    Ian

  • 0 in reply to rfcat_vk

    This is what I have..

    Outside DNS servers..

     

    DNS entries...

     

    Under administration, I have DNS checked for WAN.  When I try to do a test lookup of "EPSON" it comes back and says "Lookup failed"

    Right now, each VLAN uses its own interface for DNS, but I am wondering if I should use a single IP and add that IP to the DNS server list?

    I think what I am missing is simple.

  • 0 in reply to Steve Savenelli

    Hi Steve,

    try ticking the reverse DNS lookup for your entry. The limitation of the XG will only allow you to have one IP address assigned to any device. You will need a different name for each IP address you wish to assign. We are all hoping that very shortly Sophos will link the DNS and DHCP server and create seperate ranges for each interface to allow the same MAC or FQDN for each network.

    Ian

  • 0 in reply to rfcat_vk

    I checked reverse lookup.. no change.. not resolving the name.  When it resolves, the DNS server list reflects only external servers.. should it resolve internal address without listing sophos as a dns server?

Reply Children