I have an IPsec site to site VPN set up with my work.
The site to site vpn on my site is with vlan tagging enabled.
The site to site vpn created automatically firewall rules.
From my vlan tagged UTM interface to the addresses of work (Any) and vice versa.
Also my workstation uses the vlan tagging.
Pinging to the ip-adres from my home workstation to my works dns server works great. (in vlan XX)
I let the UTM do al the dns resolving and greated a forwarder to the DNS of my provider. All internet pages works perfectly.
When i try to resolve "domain.intra" from my work it keeps refusing.
I set it up in Network services --> DNS --> Request Routing
"domain.intra" to ip-adress from my works dns.
I tried bounding it on an interface or just on any interface.
When I ssh into the UTM and try to ping to the dns-server from my work it refuses.
nslookup to the server refuses as well. Doing this from the home workstation (with the vlan tag enabled) works perfectly.
A workaround could be letting my homeworkstation using the dns server from my work, but I prefer to have all dns request be done locally the way it was designed. Or am I wrong?
Using 9.305-4
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
