SSL web clients can access the internal machines by IP on our 100D fine
but can' t resolve internal machine names. Is this by design or am I
missing some permissions etc somewhere ? The 100D is configured under
SSL with our internal dns server. It ju...
With the published SSL (VIP) the DNS is all external so won' t touch
either of your DNS servers - it' s purely routing through and forwarding
the packets to the inside webserver. The DNS needs configuring at your
domain host to point the URL at the e...
Got it working - the DNS settings shown above play no part in SSL client
name resolution. SSL clients use the Fortigate system DNS servers. I had
these pointing to Google at 8.8.8.8 hence no internal name resolution.
How come it has specific DNS settings for SSL web clients if they don' t
apply ? Seems the SSL VPN clients can' t read the firewall objects
either as the hosts have name mappings on the Fortigate. If you create a
bookmark with a hostname in the SSL p...
