DNS Resolution over Site-to-Site VPN
Options
I have an USG110 device which I use to interconnect office network with AWS VPC Network. Following the configuration file given from AWS and the guides from Zyxel Documentation the traffic was not flowing apart from gateway to gateway.
I created a Static Route and the traffic started flowing, however if I want to use VPC Hostnames as endpoints to use from Office Networks, this is not working as USG is always routing DNS Requests to Main DNS Server rather then the one I created on DNS Forwarder Tab.
How can I route certain domain ( *.example.com) DNS queries to tunnel instead to WAN ?
I created a Static Route and the traffic started flowing, however if I want to use VPC Hostnames as endpoints to use from Office Networks, this is not working as USG is always routing DNS Requests to Main DNS Server rather then the one I created on DNS Forwarder Tab.
How can I route certain domain ( *.example.com) DNS queries to tunnel instead to WAN ?
0
All Replies
-
On usg, add a domain zone forwarder and set private dns server. On AWS, a policy route to usg's vti interface needs to be configured, I guess.
0
Categories
- All Categories
- 398 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 83 Nebula Status and Incidents
- 5.2K Security
- 99 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 922 WirelessLAN
- 35 WLAN Ideas
- 5.9K Consumer Product
- 212 Service & License
- 337 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 2.1K FAQ
- 1K Nebula FAQ
- 445 Security FAQ
- 238 Switch FAQ
- 213 WirelessLAN FAQ
- 47 Consumer Product FAQ
- 142 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 62 Security Highlight