Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Di_Junior
Advisor
Advisor

DNS stops resolving name in Remote Access VPN

Dear Mates

I have currently migrated our Remote Access VPN to Check Point, and everything seems to be working. However, from time to time, there is a problem with DNS resolving the names. when this happens, it displays the message in the photo bellow. Since I dont know the cause of the problem, sometimes a workaround that I found is to push the policy again on the firewall where the RA is terminated, and then it works just fine.

Any idea on what could be causing this, and how it can be resolved?

Thanks in advance

8 Replies
ED
Advisor

Hi,

I had recently the same problem with DNS for another situation. In my case it was problem with the "forwarders" for the DNS server itself. Also the Server: unknown information is related to the "Reverse lookup zone" for your DNS-server. (if you don't have a reverse lookup for your DNS server).

Di_Junior
Advisor
Advisor

HI Enis,

Thanks for your help.

But how do I fix this problem once and for all.

Regards

0 Kudos
ED
Advisor

May I ask if you are using Windows server for DNS so that I can try to explain what I meant?

0 Kudos
Di_Junior
Advisor
Advisor

Hi Enic 

Yes, we are using Windows Server for DNS.

0 Kudos
ED
Advisor

Open up DNS manager. On top select your DNS server, right-click and select Properties. On the new window select "Forwarders" tab. Do you have anything there? You can try to use forexample 8.8.8.8 (Google) or 1.1.1.1 (Cloudflare).

Also check in DNS manager if you have reverse lookup zone for your domain. 

0 Kudos
PhoneBoy
Admin
Admin

Recommend a TAC case for this issue.

Scott_White
Explorer

We have been experiencing this issue sporadically as well.  We have noticed that nearly all of the users experiencing the issue are using Comcast for their ISP.

 

  • Checkpoint FW verison
    • Product version Check Point Gaia R80.20
    • OS build 101
    • OS kernel version 2.6.18-92cpx86_64
    • OS edition 64-bit
    • Checkpoint VPN CLient Version:
      • VPN E80.62 Build 986000452
      • Other Versions as well
      •  
      •  OS:
        • Windows 10
        • Windows 7
0 Kudos
scenarist
Contributor

I have the same problem. I set everything according to the procedure for using internal DNS servers.

O0vCb2w94l.png

When I connect to remote VPN I have my internal dns in checkpoint virtual adapter but when run nslookup. 

D9W5cE2aCl.png

I also checked reverse lookup zones and it exists. 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events