Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 6 subscribers
  • Views 630 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNS - request route | How to resolve a subset from the internet??

OllieRory OllieRory

Hi everyone,

i have a change request that some domain names should not be resolved from an internal DNS server but all others should.
This setup is necessary so that one application can work (Skype for Business).

Say we have a partner contract with CompanyA - there are many services like citrix, webmail etc that we are using from this company.
My IT department does not know about these services - just responsible for the VPN connection and the DNS resolution.

Now we have to configure that 

 appvalley skype.companyA.com
skypeSIP.companyA.com
skypeweb.companyA.com
(and 30 others)

should not be resolved from the internal CompanyA DNS server but the external DNS servers.

Is there any way to set an exception list or do i have to create all network definitions (and keep em updated) at the UTM with the corresponding external internet IPs? (which is the only possiblity i found yet)

Thanks for your help



This thread was automatically locked due to age.
  • 0

    Hi Ollie,

    you are talking about DNS. So you could setup things like this:

    if all DNS records resolve to CompanyA.com, then have a policy route pointing to their DNS and that‘s it!

    Every subdomain will then correctly be resolved, if the other DNS has an entry for it.

    Go to Network Services/DNS/Request Routing and setup your DNS entry there.

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Unfiltered HTML