Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 12960 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cannot access static DNS mappings over VPN

O alias

I have some DNS mappings i've entered under 'DNS Host Entry.'  

 

And these three static DNS servers:  

75.75.75.75

75.75.76.75

192.168.1.1 (device itself)

 

When a SSL VPN client connects, it can resolve all internet queries fine using the first two servers, but nothing i've mapped manually will resolve.  Any thoughts?



This thread was automatically locked due to age.
Parents
  • 0

    O alias,

    did you enter the DNS IP on VPN > Show VPN Settings > SSL VPN ?

    There are 2 fields on IPv4 DNS.

    Regards

  • 0 in reply to lferrara

    Yes, I have the Ipv4 DNS set to 192.168.1.1.

     

    What is the other field you are referring to, WINS?  Do I need to put something in there too?

  • 0 in reply to O alias

    Check the DNS you have on your SSL VPN client. Everytime you change the VPN configuration, you need to download the new config from user portal.

    Regards

  • 0 in reply to lferrara

    Yup, I have that configured as 192.168.1.1 and have the latest settings file.  I also have confirmed in my client (OSX) that is the server being used.  

    Internet queries resolve fine, it's just static entries do not.  I don't think it's a firewall issue because I can access LAN resources by ip address. 

     

    23:~ user$ cat /etc/resolv.conf
    #
    # Mac OS X Notice
    #
    # This file is not used by the host name and address resolution
    # or the DNS query routing mechanisms used by most processes on
    # this Mac OS X system.
    #
    # This file is automatically generated.
    #
    search openvpn
    nameserver 192.168.1.1




  • 0 in reply to O alias

    O alias,

    try this:

    fill up the domain name field inside SSL VPN with a test.local or whatever and then create a DNS entry using FQDN: server01.test.local and see if it works. I guess you need to use FQDN in order to redirect the query to XG.

    Regards

Reply
  • 0 in reply to O alias

    O alias,

    try this:

    fill up the domain name field inside SSL VPN with a test.local or whatever and then create a DNS entry using FQDN: server01.test.local and see if it works. I guess you need to use FQDN in order to redirect the query to XG.

    Regards

Children