Solved

external IP's resolving instead of internal for VPN clients

Posted on 2006-11-07
6
182 Views
Last Modified: 2010-04-12
I have the same problem at a number of clients and the same problem as others at Experts Exchange which have not got a solution.  VPN is working with simple pptp. I can browse etc.  
NSLOOKUP shows ISP DNS servers before Internal DNS servers for the clients; that looks wrong to me.  
IPconfig /all shows properly for WINS and DNS all showing internal IPs.
DNS works properly within the network for everyone internal.  Exchange is at abc.def.com internally at 192.168.1.1 and our ISP has an identical host name abc.def.com registered for an external address of xxx.yyy.zzz.aaa which also works for VPN connection.  The only time it doesn't work is after a vpn client accesses the local network for exchange and gets blocked because he gets the external ip for the host name.  I tried lmhosts lookup in the VPN networking advanced properties and also unclicking the "use default gateway on remote network" I put static entry's for DNS and WINS which did help for some things but not this.

Help!?
0
Comment
Question by:peterrhughes
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
6 Comments
 
LVL 8

Accepted Solution

by:
saw830 earned 500 total points
ID: 17895242
Hi peterrhughes,

I would suggest statically setting the DNS on the clients that roam outside the LAN.  I would set the Primary DNS to the internal, Active Directory DNS server address and set the Secondary DNS to a know external DNS server, like ISP's DNS server.  This will allow the client to always resolve based on the internal DNS server if it can, and only use the external DNS server when it can't reach the internal DNS server.

Hope this helps,
Alan
0
 

Author Comment

by:peterrhughes
ID: 17895306
Good idea, I will try it now.
0
 

Author Comment

by:peterrhughes
ID: 17895342
holy smokes you can't immmmagine how exciting this is.
Award this guy Alan 1000 points for answering my question and one just like it on the featured VPN questions that was sort of abandoned without a correct solution.  It was and internal external DNS question just like mine.

Beauty out to you buddy from Canada!

I didn't think the failover in DNS actually worked that well.
What an eligant answer getting something to fail when not being able to correctly configure something they way we should be able to.

I am happy happy happy.  And the answer came quick to.

Thanks Alan.  
0
 
LVL 8

Expert Comment

by:saw830
ID: 17896118
You are most welcome.  Glad it solved your problem.
0

Featured Post

Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco ASDM device NT domain question 4 59
Site-To-site VPN Natting inbound traffic? 9 101
Ping in Fortigate 2 40
VPN Server Configuration in windows 7 7 45
Do you have an old router lying around the house that you don’t know what to do with? Check the make and model, then refer to either of these links to see if its compatible. http://www.dd-wrt.com/site/support/router-database http://www.dd-wrt.c…
I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question