Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 708 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Regla de Enrutamiento Estatico

Roman Laboreo

HOla!

tengo un problema y a ver si alguien le ha pasado lo mismo y como puedo solucionarlo.

Tengo un DC con DNS  "pepito.local" donde tengo un servidor Web publicado al exterior por el dns https://CRM.pepito.com.

En la zona LOCAL tengo creada la zona DNS pepito.local y  pepito.com  donde le digo que crm.pepito.com apunte a la ip local del servidor.

hasta aquí todo correcto, lanzando un ping desde PC y Portatiles a crm.pepito.com responde la ip local ( como debería) pero con unos puntos de Acceso WIFI  de la marca UBIQUITI con los móviles o tablets responde la ip publica, que al estar dentro de la red local da error.

Estoy en el punto que he detectado que los AP son de Capa2 y no pueden enrutar, de ahí los problemas con los dispositivos móviles.

como podría solucionar esto con un XG 135 ? con una regla de enrutamiento statico? alguien me puede decir como puedo hacerlo?

he realizado alguna prueba, pero no hay manera.

gracias de antemano.



This thread was automatically locked due to age.
Parents
  • 0

    Hola,

    you need a DNS policy routing to delegate DNS-queries to your internal zone(s), when clients ask for "pepito.com". You need to define any host like "crm.pepito.com" and maybe "www.pepito.com" in this "pepito.com" zone, because that policy cannot distinguish if an internal definition exists or not. You will need entries for ALL hostnames you have defined for "pepito.com" in your internal zone.

    If the Ubiquiti devices do not work correctly with this, you could give them your internal host as standard DNS via DHCP and only this internal, no public DNS at all. Then your internal DNS will handle "pepito.com" and "pepito.local", all others should be forwarded to public DNS by your internal DNS server. So the internal DNS does the forwarding if it doesn't know the domain, this is how DNS works.

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • 0

    Hola,

    you need a DNS policy routing to delegate DNS-queries to your internal zone(s), when clients ask for "pepito.com". You need to define any host like "crm.pepito.com" and maybe "www.pepito.com" in this "pepito.com" zone, because that policy cannot distinguish if an internal definition exists or not. You will need entries for ALL hostnames you have defined for "pepito.com" in your internal zone.

    If the Ubiquiti devices do not work correctly with this, you could give them your internal host as standard DNS via DHCP and only this internal, no public DNS at all. Then your internal DNS will handle "pepito.com" and "pepito.local", all others should be forwarded to public DNS by your internal DNS server. So the internal DNS does the forwarding if it doesn't know the domain, this is how DNS works.

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Children
Unfiltered HTML