Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

VPN DNS search order vs LAN DNS search order...help !

Status
Not open for further replies.
Slingky

Slingky

IS-IT--Management
Mar 4, 2003
67
CA
i have a windows 2000 box with DHCP and DNS.

in scope options, i have 3 DNS entries (006)
192.168.1.1 (internal DNS server)
206.123.6.10 (isp dns #1)
206.123.6.11 (isp dns #2)

this way, if the dns service failed on LAN, clients are able to surf the internet at least...

all LAN clients get ip info by DHCP and the DNS search order is correct

in the registry, i also added
SuppressDNSNameServers
and
SuppressWINSNameServers

so the VPN clients get only DHCP info.
and it's working.

except that the DNS Servers list they get is this one;
206.123.6.11
206.123.6.10
192.168.1.1

it is reversed !

so how may it be possible ? how to change that ?

Thanks.
Maxime
 
Sort by date Sort by votes
Do not put your ISP DNS servers in the DHCP scope options. Remove them from the scope options and only have your local DNS IP in there.

Your server should be pointing at itself for DNS or local DNS servers not your ISP's. Within your DNS console setup forwarders to point to your ISP's DNS servers.

All clients should get the DNS IP from your DHCP with the local DNS IP only and not your ISP's DNS servers.

When clients what to access addresses outside your network your DNS will automatically query your ISP DNS servers for answers, since you know have forwarders setup.




 
Upvote 0 Downvote
i know that, but i want backup in case internal dns failed...

so clients will be able to surf the net at least !

please help !
 
Upvote 0 Downvote
But your DHCP server in on the same box ? If the server was to fail they would both be down. The likelyhood of DNS server breaking is very silm compared to the whole box going down.

DNS going down locally and will most likely run into local resource problems to.

Might be time to look at 2nd server for your network and not having the one todo everything in the case of a failure.

Setup a second DNS server, doesnt have to be windows you could setup a linux box with BIND.

And shouldnt the clients be doing work and not surfing the net?

 
Upvote 0 Downvote
As for the reversing of the IP's for DNS im not sure why this is doing this, check your RRAS setup to make sure its all correct.

 
Upvote 0 Downvote
i understand your point...

but it's the way i want it.

the dns received in reversed order by vpn is not new...
i found this thread, please take a look;


microsoft tech support did'nt even gave appropriate answers to that.

i hope there will be a solution.
 
Upvote 0 Downvote
i'm sure it's not my setup as Microsoft Tech support said it was reproducible...(check google link above)

so there is a bug...and it's the same on windows 2000 and windows 2003 servers...
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

rzammit82
  • Locked
  • Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
970
suncit
suncit
Abdullah Al Maruf
  • Locked
  • Question
Telnet help for
Replies
2
Views
837
gbaughma
gbaughma
fredmartinmaine
  • Locked
  • Question
Domain Controller without DNS Server
Replies
4
Views
890
fredmartinmaine
fredmartinmaine
StevenFromSouth
  • Locked
  • Question
VPN Connects but cannot access remote network computers or folders
Replies
1
Views
353
StevenFromSouth
StevenFromSouth
bechna
  • Locked
  • Question
Windows Server and VPN Setup
Replies
1
Views
338
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top