Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
northernscum
New Contributor

SSL VPN NOT allowing dns resolution to internal network servers

Hi there

  when I SSL vpn into our work network i cannot ping the dns resolution. For example I can ping 192.X.X.X but cant ping main.server.ca . Any ideas on what I need to do on the firewall side? thanks :)

3 REPLIES 3
rgesche
New Contributor

do you have defined internal dns servers in ssl-vpn settings and allowed dns connections for vpn clients?

additional you can specify dns suffix for ssl vpn connections via cli.

BWiebe

rgesche wrote:

do you have defined internal dns servers in ssl-vpn settings and allowed dns connections for vpn clients?

additional you can specify dns suffix for ssl vpn connections via cli.

This is definitely true for tunnel-mode VPN, but for web-mode, it actually uses Network | DNS Server settings to do resolution - so if you've not defined local DNS and local domain suffix here and it's web mode, it won't work.

Silvestre_Kassoka
New Contributor

Hi 

You need to specify your internal DNS Server on the DNS option in you SSL VPN Setup.

 

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors