Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Anu_Cherian
Contributor

Site-to-Site DNS queries

Hi All,
Request help with DNS queries over site-to-site VPN, which we setup between two offices. We need our remote office employees to access our internal site located at main office, through S2S connection. The current issue is, the site cannot be resolved using site URL. The DNS queries goes to DNS hosted by ISP. Since the application team require the site to be resolved against the URL, not by IP address, we are trying to enable DNS queries inside tunnel. 
We have the DNS options under global properties checked in and all protocols allowed in VPN community

Note:

Currently we use host file to resolve the URL to IPAddress

Thank you!

 

0 Kudos
3 Replies
Wolfgang
Leader
Leader

@Anu_Cherian you have to check your logs. Traffic to your  DNS servers is encrypted in the S2S tunnel?

What gateways and version you are using ?

And finally maybee without the internal DNS you can use DNS NAT. The gateway can replace the external DNS servers answer with an NATed IP address for the internal destination How to configure DNS NAT 

Wolfgang

0 Kudos
Anu_Cherian
Contributor

Thank you @Wolfgang 

The DNS traffic is encrypted inside the tunnel

GW : Branch 3000 series, Gaia 80.40 and HQ 5000 series, Gaia 80.10

Unable to get DNS resolver working. Still working on the issue

0 Kudos
Anu_Cherian
Contributor

Hi All,

we changed the "Allow DNS queries over UDP" under Global properties to  before last, and it resolved the issue

Thank you and sorry for any inconvenience caused 

0 Kudos