• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 389
  • Last Modified:

Internal DNS Problem over Site to Site VPN

I just succesfully established a site to site VPN between our main office and branch office.

The main office has two domain controllers, both running Windows Server 2003 and both are running DNS. The branch office does not have a domain controller yet but I plan to add one in the future.

The remote site is set to use one of the primary office's Domain Controllers as its DNS. External Lookups are no problem, but it can't resolve any internal FQDNs. NetBios Broadcast is enabled so I can resolve the partial name, but if I try to ping the FQDN, it tells me that the name doesn't exist. The workstations on the remote site are already joined to the domain (I did this before I moved them).

I did several nslookups and found the same thing - external domains resolve but internal hosts or the domain name (vincentlimousines.local) do not resolve.

I've chekced my VPN on both ends - it's set to allow traffic of all types between the two sites.

Any thoughts would be greatly appreciated/
0
vls-derek
Asked:
vls-derek
  • 6
  • 4
1 Solution
 
thstephCommented:
can you ping it with the IP?
0
 
vls-derekAuthor Commented:
Yes - I can ping both DNS servers (and all other servers / workstations at the main office) from the remote site.
0
 
thstephCommented:
hmmm ... what about including the ip in the hosts file?
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
vls-derekAuthor Commented:
I thought about that and dismissed it right away because I really want to make it work "the right way", but I just entered the domain controllers in the hosts file and now it seems to work and communicate with AD. Unless someone else has some thoughts, I'll use this for the time being until I add a DC over at this site.
0
 
thstephCommented:
hmmm ... can't think of anything else ... especially if you are not using a dns in the remote location. you could always set it as a dns redirect. using any cisco routers?
0
 
Compaq_EngineerCommented:
Is the DC at the HQ the only DNS server configured on the remote office workstations?  Just wondering if somehow an internet DNS server has been set as primary?
0
 
vls-derekAuthor Commented:
Compaq_Engineer  --- I made sure that I set the DNS on the remote workstations to only look at the main office's DNS servers - there aren't any public ones being referenced.
0
 
vls-derekAuthor Commented:
My main office is using a Sonicwall TZ 170. The remote office is using a Linksys (Cisco small business series) WRVS4400N.
0
 
thstephCommented:
can you set a dns on the linksys?
cause everything's working normal, so you just need to set the dns on your router, if you can do that. otherwise, just stick with the hosts file mod.
copy it to all pcs
0
 
thstephCommented:
sorry ... didn't read your post ... errr, well, do you use a dhcp on the workstations? or is it a static IP. what is the dns given to them?
0
 
thstephCommented:
cheers for the points! :)
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

  • 6
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now