Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 3 subscribers
  • Views 5668 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN DNS Issue

Mohammad Khalil

Hi

We have recently setup the remote access VPN on the UTM9 and have a small issue.

A user connects to the VPN from home without issues. But they cannot ping hostnames on the network but can ping the IP addresses. This is intermittent as sometime it starts working but then stops again.

I have noticed from testing when I connect to the VPN, at first I am unable to ping hostnames, then I do a dnsflush and then all of a sudden I can ping hostnames. But the dns flush again resolves the issue sometimes and only lasts until the user logs off and back on again.

Has anyone experienced similar issues?



This thread was automatically locked due to age.
  • 0

    Hi,

    you might set DNS in Remote Access / Advanced Clientoptions.

    If've got the UTM-IP of SSL-VPN-Pool (e.g. 10.242.2.1) as DNS-Server#1 and the local DNS IP as DNS-Server#2 and the local domainname (domain.local).

    I use dns request routing to the interal DNS-Server - maybe it's used for this, too.

    Regards Nathan

  • 0

    Hi, Mohammad, and welcome to the UTM Community!

    You might be interested in DNS best practice.  That works well with Nathan's suggestion.

    After connecting via SSL VPN to a UTM, I often must flushdns on my machine to remove entries that conflict with public DNS since several of my customers use split DNS.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML