selective DNS when using VPN
Posted on 2012-09-12
i am looking for a way to control where DNS lookups are going when my users are connected to a VPN with my checkpoint firewall.
we use a Web security solution provider in the cloud (hosted web security).
this provider uses the DNS server location to determine the closest datacenter they have in the world.
my problem is, when my users connect to the VPN, all DNS traffic is routed to my HQ in Europe, even when i am in the APAC or the US, and thus returning a DC in europe.
can i enforce my windows 7/xp clients or my VPN settings to use the standard OS DNS server (from my ISP) for a particular domain, lets call this providerdomain.com and use the DNS server from the VPN connection for all other lookups to ensure intranet traffic keeps working?
i have full control in configuring settings on the windows client and the Checkpoint VPN client, so suggestions both ways will be fine.
I also CANNOT use the selective DNS option on my windows DNS servers, as this will still initiate the connection from the HQ in europe, and thus not solving the issue.
Thanks in advance for all the suggestions.