We help IT Professionals succeed at work.

Citrix netscaler not resolving external dns request

Raptor IT
Raptor IT asked
on
Medium Priority
839 Views
Last Modified: 2017-06-27
Version NS11.1 51.26.nc

Hello,

We are in the implementation phase of the netscaler vpn solution and we have found the session establishes successfully. During the session internal DNS is able to resolve to the internal DNS server however not within the defined scope is unable to resolve. For example  O365 which is an external resource.

We do not  have split tunneling disabled and need this function disabled. We do have internal DNS servers and 8.8.8.8 has ns servers in the netscaler network configuration .

Any ideas are appreciated
Comment
Watch Question

CERTIFIED EXPERT
Commented:
sorry, don't understand some details...
- your connected VPN-Client is able to resolve internal names like "server.domain.internal" but not www.google.com?
- your internal DNS is responsible for external records?
    NSLOOKUP
    Server 10.10.10.20   <- IP of internal DNS Server
    www.google.com
But if your client need server 8.8.8.8 to resolve external DNS records ... without split tunnelling or routing packets after passing the VPN they may do not reach this server. try to traceroute 8.8.8.8 from connected client.

... or do you use NetScaler as DNS Server/Proxy?
     is NS able to resolve external addresses?
Senior Wintel Analyst
Commented:
I would start by removing any record relating to 8.8.8.8 from the Netscaler configuration for DNS. As you said you do not have split tunneling enabled, all traffic will route down the VPN to your corporate network. If you are able to ping external resources whilst in the office, with this configuration there is no reason why you couldn't when on Netscaler VPN.
CERTIFIED EXPERT

Commented:
enough hints to solve the problem