PLEASE READ Advisory: Kernel memory issue affecting multiple OS (aka F**CKWIT, KAISER, KPTI, Meltdown & Spectre) for the latest updates.
We'd love to hear about it! Click here to go to the product suggestion community
I am a new person to the Sophos XG environment, but I am having a perplexing issue that I can't figure out for the life of me.
When non domain devices are connecting via the SSL VPN, they are unable to resolve any server by DNS name. When domain devices connect, it's no problem, so I have a theory that the DNS request from the VPN'd device is not pushing thru to the internal network for some reason. I tried adding the local DNS server to the DNS list on the firewall, but to no avail. That being said, with the third DNS server pointed internal, it is now able to resolve from the firewall, just not the non-domain device. The internal DNS servers are AD.
Any pointers or ideas on where to look to see how to get this to work properly?
Hey Andrew Cioppa
Welcome to the Sophos Community!
Have you already configured the following fields for your SSL VPN settings? Added your internal DNS servers and domain name?
FloSupport | Community Support Engineer
In reply to FloSupport:
We have a primary and secondary DNS servers pointing to our internal DNS servers, and the Domain Suffix is already programmed in as well.
Anywhere else we can look?
In reply to Andrew Cioppa:
Could you test by trying to resolve the whole FQDN from a SSL VPN connected non-domain device?
I have tried pinging it by both the host name and the FQDN. Neither seem to work.
It does work via IP, so we know the routing is working properly.
Could you please enable the Support Access Tunnel on your appliance and PM me with the Access ID for further investigation?