[ATP/FLEX] How to configure a DNS server on the remote VPN site?
Zyxel_James
Posts: 663 
Zyxel Employee
Zyxel Employee
in VPN
In this scenario, there are specific resources on a local domain in the HQ site and want to reach them from the remote sites (branches). Set "This Gateway" as the DNS server for the Branch Firewall
- Set "This Gateway" as the DNS server for the Branch Firewall
Go to Site-wide > Configure > Firewall > Interface, and select "this gateway" as the first DNS server on LAN. Please make sure the DNS server is located on the remote VPN subnet.
This step is to make the DNS requests go to the firewall, and then the firewall has to handle the DNS requests. In the next step, we will configure where the branch firewall should forward the DNS requests.
- Configure the DNS server for the branch firewalls.
Go to Firewall > Configure > Firewall Settings, and add a new Domain Zone forwarder to forward to domain to the DNS server. Set Interface as Auto for forwarding the domain to the DNS server through the VPN tunnel.
How to test the result
Connect a PC to the branch LAN to run nslookup to check if the PC can resolve the domain name.
nslookup example.local
Tagged:
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 237 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 383 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight