VPN SSL - DNS
When a Windows client establishes a VPN SSL connection to ATP500/800, via Secuextender, usually it takes the DNS server IP configured on the ATP. But not always. When it does not, and it keeps the DNS server IP received from the home route, the client is unable to access remote LAN resources by name. I couldn't find a pattern, it seems it happens randomly.
In these days of COVID19 a lot of persons work from home, so we had the chance to observe many cases as above.
Did anybody else see this problem ? Any suggestion how to fix it ?
many thanks
Paolo
All Replies
-
On windows 10, if you are using split tunnel instead of forwarding all traffic into the tunnel.
The DNS query priority is based on the metric of interface.
Here the MS-DOS mode command to show the metric value of all interfaces.
c:/> netsh interface ipv4 show interfaces
In my example,
The VPN interface is "Ethernet 2" with metric 55, and the local wireless interface is "Wi-Fi" with metric 40. Local wire interface is "Ethernet" with metric 5.
So that I need to change the VPN interface metric small than "5" to get higher priority.
http://woshub.com/dns-resolution-via-vpn-not-working-windows/
1 -
many thanks, I will check it out
regards
0
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 64 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight