Description |
This article describes how to resolve the issue when the customer is seeing both the local adaptor IP and SSL VPN adaptor IP on the local DNS server. |
Scope | FortiGate/FortiClient. |
Solution |
Local IP: The IP assigned to the end-user network adaptor might be LAN or Wi-Fi. SSL VPN IP: The IP assigned from the FortiGate to the SSL VPN adaptor.
When the end-user is connected to the SSL VPN and gets the internal DNS IP address from the FortiGate, this error occurs. Below is a sample output from the user's PC after connecting to SSL VPN.
Entry on the DNS server for the same user after connecting to SSL VPN.
The solution to resolve this issue is described below:
no_dns_registration
The following is the change in DNS entry in the server:
If no_dns_registration=1, only the physical network adapter's 'Register This Connection's Address in DNS' is selected.
Note: Try also disabling the DNS registration on the local NIC via NIC properties: Go to NIC -> Properties -> IPv4 -> Advanced -> DNS tab -> Uncheck 'Register this connection’s addresses in DNS.' Configure FortiClient VPN adapter to register its IP in DNS. Use GPO(Group policy object) settings: |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.