Hello,
we have simple setup with our network. Now we added vlans for our wifi. (multiple, one for guest , notebooks, smartphones)
If i get it correct it would be much safer of security point to let the Sophos XG getting all dns request right? So i set up my dhcp inside sophos and said my dns is the gateway of the sophos subnet. The Sophos xg has dns request route for our domain.local to our windows dns server (Which works for our vpn fine)
Now i realised inside my normal network (defualt) i cant really resolve the computer names which are on my wifi vlan, so i setup on my windows dns server a reverse lookup zone for this subnet, but meh this not how it works. The windows server does not get the computer name since it's request from the sophos xg, right?
Is it somehow possible to change this? My problem is now, i am using FQDN host, like example open rdp for home office users (computername.mydomain.local), or does my FQDN needs look diffrent? (Since i can see the computer name on dhcp lease from sophos xg)
Or do i need add some kind of entry on my windows server, that is recording clients from the sophos xg dns request?
My only soltion would be so far, add vlan adapter to my windows server or make firewall rule for dns to my internal dns. (But i kinda liked that sophos doing evrthing and my server is isolated)
This thread was automatically locked due to age.
