USG40w DNS zone forwarder

IT_Field_Support Posts: 96  Ally Member
edited April 2021 in Security

I have a question regarding the way the router work with dns for external zone.

For exemple :
My router's name is router
My domain name is :

Localy, my dhcp clients on the lan get IP and dns suffix and I can resolve localy all the hosts that have DNS records in the router.

Now, I want to be able to resolve the DFS name of the HQ through a VPN tunnel, so I have setup a domain zone forwarder as this :
Domain zone :
Type : User-defined
DNS Server : ip of the DC
Query via : Tunnel

The DFS name is logicaly :

Now, if I do an nslookup on a laptop connected on the LAN of my router it don't work at all.
It seems that the router add to the DNS request the domain name of the router which is at the end :

How I can setup the DHCP, or the DNS forwarder or anything else so I can resolve the DFS name ?

Thank you for your time,


All Replies

  • Jeremylin
    Jeremylin Posts: 166  Master Member
    I think you need to create the static route
    DNS server is 192.168.10.X
    Local gateway:

  • IT_Field_Support
    IT_Field_Support Posts: 96  Ally Member
    I'm not sur I need to add this route because I can already ping the DFS using the IP directly. The problem is only with the name resolution.

  • Jeremylin
    Jeremylin Posts: 166  Master Member
     As I know, you need to create static route to let DNS session flow in tunnel.

Security Highlight