We are having a weird situation with our UTM9
Laptops connected trough an ethernet calbe are able to access servers by their hostname
But when connected trough WIFI or SSLVPN they are only able to access servers trough their IP not their hostname...
A sophos engineer said our DHCP/DNS configuration on the UTM was fine and yet it is not working on the WIFI / SSL
We are able to ping both DNS IP.
Everything was working fine on the sslvpn until two weeks ago
Only change made to the sslvpn was a NAT rule to allow user to access a server on a remote location (site to site vpn)
Please Help !!
Is your SSL VPN pool allowed in the DNS > Global > Allowed Networks field?
The NAT might be doing something with redirection, as if I remember right it acts before any firewall rules. My brain is a bit hazy from lack of sleep at the moment, I'll return once I can clear up some of this fog in my head.
UTM - 9.713-19 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz 16GB Memory | 500GB SATA HDD | GB Ethernet x5
Yes it is allowed in the "allowed networks " !
We will try disabling the nat when no one is working !
How does your setup compare to DNS best practice?
You might also want to consult #2 in Rulz (last updated 2021-02-16).
Cheers - Bob
I will verify that and come back to you thanks !
I also noticed hat trough the VPN i'm able to remote into a pc using the IP or FQDN, but not by the hostname
That would most likely indicate your DNS is incorrect then with your setup.
do you push the DNS-settings to your SSL-VPN-Clients like in this screenshot?
Mit freundlichem Gruß, best regards from Germany,
New Vision GmbH, GermanySophos Silver-Partner
If a post solves your question please use the 'Verify Answer' button.
Did you already check your DNS-Setup?
Yes this is correctly set-up