Proxy DNS



  • Good day,

    I have built few vpn tunnel with my workplace. Everything work fine.

    I’m already using proxy DNS, so all the dns query on my lan pass through the SSG140 (that I use at home). That work fine.

    Since I built the tunnel, I have added an entry into the the proxy dns:

    set dns proxy
    set dns proxy enable
    set interface ethernet0/8 proxy dns
    set dns server-select domain odessa.local outgoing-interface tunnel.1 primary-server 192.168.4.10 secondary-server 192.168.4.11
    set dns server-select domain * outgoing-interface ethernet0/9 primary-server 207.164.234.129 secondary-server 207.164.234.193 tertiary-server 207.164.234.129 failover

    Eth0/8 is my local lan (10.35.1.0/24)
    tunnel.1 is the tunnel I have with my workplace

    I’m able to reach all resource on that work lan (192.168.4.0/24)

    If I do : nslookup whatever.odessa.local 192.168.4.10,  it work, I get the result…

    but if I do only : nslookup whatever.odessa.local, i get timeout…

    I had looked the dns log …

    I see that:

    2014-02-02 09:58:33 info DNS request “odessadc01.odessa.local” from 10.35.1.10/64824 is forwarded to server 192.168.4.11/53
    2014-02-02 09:58:30 info DNS request “odessadc01.odessa.local” from 10.35.1.10/64825 is forwarded to server 192.168.4.10/53

    So it seem the ssg want to send the request to the right server, but it doesnt…

    please, i need help :S

    Thanks
    Francois


 

25
Online

38.4k
Users

12.7k
Topics

44.5k
Posts