Domain Overrides for VPN multi site
-
Hello,
I apologize in advance for my English.
I am opening this topic because I am currently experiencing a problem with DNS Overrides.
I have a site-to-site VPN configuration that works fine. The only problem is that I can't resolve to a DNS external to the primary site.
Diagram:
My request:
I wish from a post on the primary site to make resolutions of the domain name of the secondary site with the Domain Overrides option configured on the pfsense of the primary site.My configuration:
-
DNS Resolver:
I have configured the Domain Overrides
-
General Setup:
Add also DNS IP of the secondary site.
When I do a pfsense Nslookup of the primary site the DNS of the secondary site does not respond.
Same thing on a primary site workstation.
There is currently no flow blocking between the two sites.
Thanks in advance to the community.
-
-
@focheur91300
Does the remote DNS server allow this access?
Possibly you have to ad an ACL for the primary pfSense.Also maybe the server cannot handle DNSSEC requests. So try to disable it for testing purposes.
-
Hello @viragomann,
The problem is DNSSEC.
Thanks again.