Expose the services via DNS to clients connected via VPN
We have a USG FLEX 100W model firewall and have recently set up VPN, now we would like to set the DNS service of the firewall to expose business services only to the internal LAN and clients connected via VPN.
The services are exposed from the corporate servers and we currently use an external dns service.
We have tried setting the DNS fuznionalities of the USG but it does not work.
Our esisgency is to make the service1.company.com service, exposed by the server at 192.168.0.xxx, available only to the LAN and clients connected via VPN and not expose it to the Internet as it currently is.
How can we do this?
Best regards
All Replies
-
Is your setup IKEv2 with Remote Access (Server Role) and that the IP pool does not conflict with your LAN or clients LAN?
0 -
We have two VPN connections enabled, one with IKEv2 for Windows clients and the other with IKEv1 (L2TP) for Linux clients.
I confirm that the address pools do not overlap.Best regards
0 -
From what I can tell on ZLD OS only 3rd party DNS must be used for VPN but what you can do is run a local DNS server and have the VPN point to that.
0 -
So it is not possible to use the internal dns for clients connected via VPN?
If I set the DNS options on the USG they will only be used by the clients on the LAN, after configuring the Zyxel as the primary DNS server on the clients.
Is this correct?0
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.5K Security
- 216 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 243 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight