This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNS Forwarder over IPSEC VPN

I have a remote site I connect to from home via an IPSEC tunnel that's working fine when I use IPs instead of hostnames. I have added a Request Routing entry pointing the remote DNS domain name to the IP address of the DNS server on the remote network. From my local network, I can run "host www.remote.lan RemoteDnsServerIP" and get the proper response. When I try the same pointing to the local UTM machine, it fails. Doing the same with hostnames on the local network and names of Internet hosts both work fine. This feels like the IP address that the local DNS server (on the UTM machine) is using isn't on the internal network and isn't getting through the tunnel.

How do I begin troubleshooting this? I'm new to Sophos/Astaro so be gentle pls.

This thread was automatically locked due to age.

Parents

0 Paul Dugas over 11 years ago

Bob, drawing is attached. The UTM has DNS Request Routing entries for work.local and 1.10.10.in-addr.arpa pointing to 10.10.1.30 but since it can't even ping that address, the DMS will never work. The laptop can ping that IP. The laptop can resolve hostnames and addresses when it is set to use 10.10.1.30 as it's DNS server. The tunnel appears to be fine. The issue is how to get the UTM itself to use it.
- diagram.png
- View
- Hide
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Paul Dugas over 11 years ago

Bob, drawing is attached. The UTM has DNS Request Routing entries for work.local and 1.10.10.in-addr.arpa pointing to 10.10.1.30 but since it can't even ping that address, the DMS will never work. The laptop can ping that IP. The laptop can resolve hostnames and addresses when it is set to use 10.10.1.30 as it's DNS server. The tunnel appears to be fine. The issue is how to get the UTM itself to use it.
- diagram.png
- View
- Hide
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data