Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
685
Views
0
Helpful
1
Replies

re: dns route ralayed by vpn concentrator not reachable

tchacko
Level 5
Level 5

‎05-29-2007 10:38 AM

i am working on a setup wherein we have configured remote access vpn for our customers using a vpn concentrator 30xx series herein we are able to establish the ipsec tunnel and reach all the subnets on the inside of the concentrator however the dns route relayed or pushed from the concentrator to the client is not reachable ,we have a pix firewall behind the concentrator which has been configured to allow all the traffic coming in from the ipsec endpoints , when i check the routes on the endpoint device that is the vpn client machine i have a dns route with the tunnel gateway as the next hop except this specific route i have a default route on the client as well , the catch herein is that when i remove the specific dns route i am able to reach the dns server which was earlier unreachable , i am able to reach the dns server by means of the default route which has the same next hop as the specific route mentioned earlier.just need to clarify whether i have missed any configuration on the concentrator.

Labels:
0 Helpful
1 Reply 1

amritpatek
Level 6
Level 6

‎06-05-2007 05:20 AM

There could be no specific reason for this as source and destination address in IP is going to remain the same in either case.Is the DNS request traffic from the client reaching the concentrator when specific route is mentioned. If not for the specific route set the next hop as Interface if ip address was mentioned before else set the ip address as next hop if interface was mentioned before.

0 Helpful
Customers Also Viewed These Support Documents