[ATP/FLEX] How to configure a DNS server on the remote VPN site?
Options
Zyxel_James
Posts: 809 
Zyxel Employee
Zyxel Employee
in VPN
In this scenario, there are specific resources on a local domain in the HQ site and want to reach them from the remote sites (branches). Set "This Gateway" as the DNS server for the Branch Firewall
- Set "This Gateway" as the DNS server for the Branch Firewall
Go to Site-wide > Configure > Firewall > Interface, and select "this gateway" as the first DNS server on LAN. Please make sure the DNS server is located on the remote VPN subnet.
This step is to make the DNS requests go to the firewall, and then the firewall has to handle the DNS requests. In the next step, we will configure where the branch firewall should forward the DNS requests.
- Configure the DNS server for the branch firewalls.
Go to Firewall > Configure > Firewall Settings, and add a new Domain Zone forwarder to forward to domain to the DNS server. Set Interface as Auto for forwarding the domain to the DNS server through the VPN tunnel.
How to test the result
Connect a PC to the branch LAN to run nslookup to check if the PC can resolve the domain name.
nslookup example.local
Tagged:
0
Categories
- All Categories
- 442 Beta Program
- 2.9K Nebula
- 217 Nebula Ideas
- 127 Nebula Status and Incidents
- 6.4K Security
- 574 USG FLEX H Series
- 344 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.4K Wireless
- 52 Wireless Ideas
- 6.9K Consumer Product
- 297 Service & License
- 472 News and Release
- 90 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.8K FAQ
- 34 Documents
- 87 About Community
- 102 Security Highlight