Re: Site-to-Site DNS queries

Anu_Cherian · ‎2021-05-04

Hi All,
Request help with DNS queries over site-to-site VPN, which we setup between two offices. We need our remote office employees to access our internal site located at main office, through S2S connection. The current issue is, the site cannot be resolved using site URL. The DNS queries goes to DNS hosted by ISP. Since the application team require the site to be resolved against the URL, not by IP address, we are trying to enable DNS queries inside tunnel.
We have the DNS options under global properties checked in and all protocols allowed in VPN community

Note:

Currently we use host file to resolve the URL to IPAddress

Thank you!

Wolfgang · ‎2021-05-04

@Anu_Cherian you have to check your logs. Traffic to your DNS servers is encrypted in the S2S tunnel?

What gateways and version you are using ?

And finally maybee without the internal DNS you can use DNS NAT. The gateway can replace the external DNS servers answer with an NATed IP address for the internal destination How to configure DNS NAT

Wolfgang

Anu_Cherian · ‎2021-05-04

Thank you @Wolfgang

The DNS traffic is encrypted inside the tunnel

GW : Branch 3000 series, Gaia 80.40 and HQ 5000 series, Gaia 80.10

Unable to get DNS resolver working. Still working on the issue

Anu_Cherian · ‎2021-05-21

Hi All,

we changed the "Allow DNS queries over UDP" under Global properties to before last, and it resolved the issue

Thank you and sorry for any inconvenience caused

Are you a member of CheckMates?

Site-to-Site DNS queries