Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Internal DNS Problem over Site to Site VPN

Posted on 2009-04-04
11
Medium Priority
?
388 Views
Last Modified: 2012-05-06
I just succesfully established a site to site VPN between our main office and branch office.

The main office has two domain controllers, both running Windows Server 2003 and both are running DNS. The branch office does not have a domain controller yet but I plan to add one in the future.

The remote site is set to use one of the primary office's Domain Controllers as its DNS. External Lookups are no problem, but it can't resolve any internal FQDNs. NetBios Broadcast is enabled so I can resolve the partial name, but if I try to ping the FQDN, it tells me that the name doesn't exist. The workstations on the remote site are already joined to the domain (I did this before I moved them).

I did several nslookups and found the same thing - external domains resolve but internal hosts or the domain name (vincentlimousines.local) do not resolve.

I've chekced my VPN on both ends - it's set to allow traffic of all types between the two sites.

Any thoughts would be greatly appreciated/
0
Comment
Question by:vls-derek
  • 6
  • 4
11 Comments
 
LVL 4

Expert Comment

by:thsteph
ID: 24068948
can you ping it with the IP?
0
 

Author Comment

by:vls-derek
ID: 24068958
Yes - I can ping both DNS servers (and all other servers / workstations at the main office) from the remote site.
0
 
LVL 4

Accepted Solution

by:
thsteph earned 1500 total points
ID: 24069006
hmmm ... what about including the ip in the hosts file?
0
New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

 

Author Comment

by:vls-derek
ID: 24069039
I thought about that and dismissed it right away because I really want to make it work "the right way", but I just entered the domain controllers in the hosts file and now it seems to work and communicate with AD. Unless someone else has some thoughts, I'll use this for the time being until I add a DC over at this site.
0
 
LVL 4

Expert Comment

by:thsteph
ID: 24069056
hmmm ... can't think of anything else ... especially if you are not using a dns in the remote location. you could always set it as a dns redirect. using any cisco routers?
0
 
LVL 6

Expert Comment

by:Compaq_Engineer
ID: 24069063
Is the DC at the HQ the only DNS server configured on the remote office workstations?  Just wondering if somehow an internet DNS server has been set as primary?
0
 

Author Comment

by:vls-derek
ID: 24069088
Compaq_Engineer  --- I made sure that I set the DNS on the remote workstations to only look at the main office's DNS servers - there aren't any public ones being referenced.
0
 

Author Comment

by:vls-derek
ID: 24069102
My main office is using a Sonicwall TZ 170. The remote office is using a Linksys (Cisco small business series) WRVS4400N.
0
 
LVL 4

Expert Comment

by:thsteph
ID: 24069141
can you set a dns on the linksys?
cause everything's working normal, so you just need to set the dns on your router, if you can do that. otherwise, just stick with the hosts file mod.
copy it to all pcs
0
 
LVL 4

Expert Comment

by:thsteph
ID: 24069148
sorry ... didn't read your post ... errr, well, do you use a dhcp on the workstations? or is it a static IP. what is the dns given to them?
0
 
LVL 4

Expert Comment

by:thsteph
ID: 24069165
cheers for the points! :)
0

Featured Post

Ready for your healthcare security check-up?

In the past few years, healthcare organizations have become a prime target for advanced attacks. Does your organization have what it needs to defend itself? Schedule your healthcare security check-up today and download our free Healthcare Security Resource Kit today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
Resolve DNS query failed errors for Exchange
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

877 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question