Skip to main content
kstueren
kstueren
New Member
June 15, 2022
Question

dns over ipsec

  • June 15, 2022
  • 1 reply
  • 1092 views

Hello,

Is there any option to set up RoadWarrior or Site-to-site IPsec VPN so it can resolve the localhost PC name?

On-site A I have IP 10.50.0.1/16 on the LAN interface, DNS uses fortiguard servers for DNS because I use forti DDNS for VPN. Roadwarrior is connecting to Site A. DHCP is on Fortigate.

On-site B I only use IPsec for site-to-site VPN to site A. IP 192.168.1.1/24. DNS use fortiguard servers for DNS because I use forti DDNS for VPN. DHCP is on Fortigate.

I don't have AD or any domain on both sites, all computers are in the workgroup. Is there any option that the computer from roadwarrior of Site B can resolve the computer on-site A?

thanks

1 reply

akristof
Staff
akristof
Staff
June 16, 2022

Hello,

You can build DNS database on FortiGate:

https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/960561/fortigate-dns-server

Then you can change DNS on DHCP to be FortiGate and local domain will be resolved by FortiGate, everything else can be forwarded to other DNS servers.

Terms & ConditionsAccessibility statement