Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 3 answers
  • Subscribers 40 subscribers
  • Views 960 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Rule setup for AD Domain Trust

Philip Gardner

XG 18.0.3 on 2 networks connected via SSL-VPN (s2s) and Im trying to create a domain trust relationship between sites.

VPN is connected and can ping across both, but name resolution is failing.

Not sure if its failing because of WAN DNS or if its a rule Im missing.  It has the VPN to LAN rules created already but what else could it be?



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thanks for reaching out to the Community! 

    Have you tried to add a DNS request route for the domain? ?If not, try to configure it under Network > DNS > Add a DNS request route. 

    Thanks,

  • 0 in reply to FormerMember

    I did actually, but to no avail.

    I see in the log viewer that port 53 requests are reaching the other side, but cannot resolve host names.

    Also, if the tunnel was a 'full tunnel' I would be able to pull up the firewall from the other side in a browser, and I cannot.  I can ping it, but not open it up.  Both sites have the same XG125 firewalls, same version, etc.

    Is there an article I can reference on how to setup something similar?

Reply
  • 0 in reply to FormerMember

    I did actually, but to no avail.

    I see in the log viewer that port 53 requests are reaching the other side, but cannot resolve host names.

    Also, if the tunnel was a 'full tunnel' I would be able to pull up the firewall from the other side in a browser, and I cannot.  I can ping it, but not open it up.  Both sites have the same XG125 firewalls, same version, etc.

    Is there an article I can reference on how to setup something similar?

Children
Unfiltered HTML