[ previous ] [ next ] [ threads ]
 From:  Chris Buechler <cbuechler at gmail dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] DNS "proxy" over IPSec
 Date:  Fri, 17 Dec 2004 19:26:59 -0500
On Fri, 17 Dec 2004 17:52:24 -0500, Jesse Guardiani <jesse at wingnet dot net> wrote:
> Hello,
> is my LAN at work.
> is my LAN at home.
> The two are connected together by a m0n0wall -> m0n0wall
> IPSec VPN. The m0n0wall at work runs 1.11 and the
> m0n0wall at home runs 1.2b3.
> In the interest of having my office network
> m0n0wall's internal DNS available to my LAN
> at home, I have attempted to set my m0n0wall at
> home's DNS server to in:
>     System -> General Setup -> DNS Servers
> In addition, as both locations connect to the
> internet via PPPoE over ADSL, I have unchecked
> the option:
>     "Allow DNS server list to be overridden by DHCP/PPP on WAN"
> On the same page.
> I rebooted the home m0n0wall (the only one with
> DNS changes), and a `cat /etc/resolv.conf` from
> exec.php is showing "" as the only
> nameserver, but general DNS queries fail.
> However, I *can* perform `dig` operations from my linux
> machine at home, over the IPSec link, to the m0n0wall
> at work, as illustrated below:

Same reason you can't query SNMP over VPN, and same fix.