DNS Resolution over Site-to-Site VPN
I have an USG110 device which I use to interconnect office network with AWS VPC Network. Following the configuration file given from AWS and the guides from Zyxel Documentation the traffic was not flowing apart from gateway to gateway.
I created a Static Route and the traffic started flowing, however if I want to use VPC Hostnames as endpoints to use from Office Networks, this is not working as USG is always routing DNS Requests to Main DNS Server rather then the one I created on DNS Forwarder Tab.
How can I route certain domain ( *.example.com) DNS queries to tunnel instead to WAN ?
I created a Static Route and the traffic started flowing, however if I want to use VPC Hostnames as endpoints to use from Office Networks, this is not working as USG is always routing DNS Requests to Main DNS Server rather then the one I created on DNS Forwarder Tab.
How can I route certain domain ( *.example.com) DNS queries to tunnel instead to WAN ?
0
All Replies
-
On usg, add a domain zone forwarder and set private dns server. On AWS, a policy route to usg's vti interface needs to be configured, I guess.
0
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 65 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight