Getting DNS over site-to-site IPsec VPN to Google Cloud
I've set up IPsec from our local LAN (pfSense) to Google Compute Platform, to get some additional compute nodes in the cloud. The tunnel works fine, and I can ssh, ping etc. between the cloud and the local nodes, as long as I use their IP, but not by using hostnames. nslookup works from cloud to local, if I specify the IP of the pfSense (e.g. nslookup local01 192.168.0.1), but I don't know how to do that the other way, as the compute engines use 169.254.169.254 or metadata.google.internal. We're using latest pfSense for DHCP and DNS locally.
I really need to be able to use hostnames (or fqdn) in both directions, but am having trouble figuring out how to do this. I'm new to the Google Compute Platform and not that experienced with pfSense, so am a bit lost. Anyone have an idea how to solve this?