USG40w DNS zone forwarder

IT_Field_Support
IT_Field_Support Posts: 96  Ally Member
edited April 2021 in Security
Hi,

I have a question regarding the way the router work with dns for external zone.

For exemple :
My router's name is router
My domain name is : city.country.test.hq.compagny.com

Localy, my dhcp clients on the lan get IP and dns suffix city.country.test.hq.compagny.com and I can resolve localy all the hosts that have DNS records in the router.

Now, I want to be able to resolve the DFS name of the HQ through a VPN tunnel, so I have setup a domain zone forwarder as this :
Domain zone : hq.compagny.com
Type : User-defined
DNS Server : ip of the DC
Query via : Tunnel

The DFS name is logicaly : hq.compagny.com

Now, if I do an nslookup on a laptop connected on the LAN of my router it don't work at all.
It seems that the router add to the DNS request the domain name of the router which is at the end :
hq.compagny.com.city.country.test.hq.compagny.com

How I can setup the DHCP, or the DNS forwarder or anything else so I can resolve the DFS name ?

Thank you for your time,

Davy




All Replies

  • Jeremylin
    Jeremylin Posts: 166  Master Member
    I think you need to create the static route
    Example:
    DNS server is 192.168.10.X
    Local gateway: 192.168.1.1


  • IT_Field_Support
    IT_Field_Support Posts: 96  Ally Member
    I'm not sur I need to add this route because I can already ping the DFS using the IP directly. The problem is only with the name resolution.

    Thanks
    Davy
  • Jeremylin
    Jeremylin Posts: 166  Master Member
     As I know, you need to create static route to let DNS session flow in tunnel.

Security Highlight