- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
resolve hostname and ip address in vpn site to site
Hi, I have a site-to-site vpn set up between 2 fortigates: Site A Fortigate 300E and site B Fortigate 60F, and I was able to fill the vpn and the communication between both sites. When I connect to a computer at site A from site B I can do it without problems through the IP, but for security reasons I want them to be able to communicate through the host name. In site A all my computers belong to a domain (mycompany.com.mx) but in my site B the computers are not within a domain. Is it possible to get site B computers to access site A computers by hostname and not just by IP? I hope you can help me Thank you
Solved! Go to Solution.
- Labels:
-
6.4
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You have two ways:
[ol]- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
Site B computers need to be able to access a none domain joined DNS server via s2s VPN.
For example if you are able to add those A records to Fortigate and set up Fortigate address as DNS address for Site B computer to use, it may solve your case, good luck.
Thanks,
BH
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You have two ways:
[ol]- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
In my site B, I have an interface such as LAN 192.168.xx.xx, and within this same interface I have created a VLAN (172.16.xx.xx) to all the equipment in site B I assigned a fixed IP of this VLAN, then Is it necessary to change this VLAN so that it assigns DHCP to the computers and put the DNS of missite A?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
if you have assigned the static ip you must modify manually the dns of clients with DNS Server of site A.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
If I assign DNS from site A to the computers from site B, internet access is lost, right now I have them configured with google DNS 8.8.8.8 and 8.8.4.4 and in this way they give me internet access and I also have access to the computers of my site A but through IP and what I want is to be able to access through the name of the computers.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I have the corresponding policies and I have phase 2 configured to access my DNS from site A, in the static routes I have doubts. In my site B I have 3 static routes, one I have as a destination my DNS and another subnet that I want to access, and one towards the internet, but in site A I do not have these policies
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
In site A you must have a route like this:
Destination: subnet B
Gateway: VPN Site to Site to B (Interface VPN)
Distance: 10
Status: Enabled
Without this route the DNS Server does not respond to client in site B.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I will make these changes and share the results.
