Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 9 replies
  • Subscribers 28 subscribers
  • Views 2132 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Custom DNS host entry for the client is not working as needed? XG17.5.14 and XG18.0.3

SMRU IT

I have an office A using 192.168.30.0/24 network. Office A LAN gateway IP is 192.168.30.170.

And i have an office B using 192.168.22.0/24 network.

Both office A and B has IPsec VPN connection.

I added DNS host entry for Web-server01(192.168.22.2) in office A firewall.

I can ping 192.168.22.2 from 192.168.30.0/24 network but cannot ping Web-server01 from 192.168.30.0/24 network.

Do i miss anything? or this is not possible on Sophos XG firewall.

We have only a few clients on office A so we do not want to setup another DNS server where Sophos XG can work as an DNS server?

Thanks!

This is not working on both XG 17.5.14 and XG 18.0.3.

The below is all my configuration.

DNS

DHCP



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    a suggestion, you might need either firewall rule or a SD-WAN type policy. Where do you get to when you tracert  from your PC?

    Ian



    Corrected spelling mistakes.
    [edited by: rfcat_vk at 7:31 AM (GMT -7) on 30 Oct 2020]
  • 0 in reply to rfcat_vk

    Hi,

    I'm not sure what you mean firewall rule or a SD-WAN type policy. can you give an example.

    I already have an firewall rule to have connection from 192.168.30.0/24 to 192.168.22.2 as the ping is working fine with IP address but not the host name.

    My PC does not know the host name so i cannot tracert it.

    Dah

  • 0 in reply to SMRU IT

    Hi,

    Please check your pc can actually see the XG dns. Sounds like a dns issue.

    ian

  • 0 in reply to rfcat_vk

    Hi ian,

    What you mean my PC can actually see the XG DNS?

    I have two PC as clients.

    1. This two PC can ping each other by host name. (Get IP from XG DHCP)

    2. This two PC cannot ping the XG host name.

    3. This two PC cannot ping custom DNS host entries.

    4. XG CLI can ping custom DNS host entries.

    5. XG CLI cannot ping itself by host name.

    6. XG CLI cannot ping the two PC host name.

    Looks like the clients know only DHCP clients host name.

    I already set DHCP to use Device's DNS settings.

    What am i missing?

    Dah

Reply
  • 0 in reply to rfcat_vk

    Hi ian,

    What you mean my PC can actually see the XG DNS?

    I have two PC as clients.

    1. This two PC can ping each other by host name. (Get IP from XG DHCP)

    2. This two PC cannot ping the XG host name.

    3. This two PC cannot ping custom DNS host entries.

    4. XG CLI can ping custom DNS host entries.

    5. XG CLI cannot ping itself by host name.

    6. XG CLI cannot ping the two PC host name.

    Looks like the clients know only DHCP clients host name.

    I already set DHCP to use Device's DNS settings.

    What am i missing?

    Dah

Children