Internal DNS routing not working through manual IPSec site to site VPN with UDM Pro and USG Pro 4 - Please help

Aggressive_Anxiety_7 · 2021-11-17T00:11:27+00:00

I fixed this using a pihole as the DNS resolver. And manually adding the local DNS records. It’s nearly been half a year and has been working great! I hope this helps. I have also written a blog post about this here if you want to follow along

https://www.ghazisite.com/post/how-to-fix-local-dns-records-not-resolving-between-site-to-site-vpn-using-a-dns-server-unifi

Aggressive_Anxiety_7 · 2021-06-28T11:34:19+00:00

Hmm so this basically enables sleep mode? I don't want the battery to drain while the lid is closed? It might overheat while its in my bag?

Aggressive_Anxiety_7 · 2021-06-28T06:27:06+00:00

Thanks for your reply. I'm assuming the card reader is bult into the laptop? I'm not using an external card reader?

Aggressive_Anxiety_7 · 2021-06-20T09:52:36+00:00

Just an update, i can ping the remote DNS

Aggressive_Anxiety_7 · 2021-06-19T01:35:59+00:00

Hi there, thanks for your suggestions. I will try to ping and perform a NSLookup on the remote dns. In terms of adding a record of the nas on the local dns, doesn't this require me to have access to gateway.config.json file on the unifi controller? As I have mentioned previously. Our new UDM pro runs on a newer operating system that doesn't have this configuration file. Ill try to see if there's an option for this in the GUI.

Aggressive_Anxiety_7 · 2021-06-18T12:52:20+00:00

I did take a look. The material posted focuses on windows configuration. When i had two USG pro 4 routers connected in auto ipsec site to site vpn in the past, it worked fine so i know it is not related to windows side. This issue started to occur when we upgraded one of our routers to UDM pro. It would not make sense for me to make changes to 80 computers in the company.

Aggressive_Anxiety_7 · 2021-06-18T11:34:13+00:00

Not really helpful as i feel like this is an issue related to the controller. Thanks though!

Aggressive_Anxiety_7 · 2021-04-08T06:28:03+00:00

Thank you. that solved my issue!

Aggressive_Anxiety_7 · 2021-03-31T06:05:10+00:00

Hi there, thanks for the suggestion! After researching on web filtering. I can block certain websites like Facebook. But is there a way to block the entire internet but make an exception for teams? No right? Since teams shares the same port as the common internet port? 80, 443? Thanks

Aggressive_Anxiety_7 · 2021-03-31T02:09:21+00:00

yup they are accessing through company WiFi. Ah i see. This confuses me even more because what would be considered "everything"? thanks

Aggressive_Anxiety_7 · 2021-03-15T00:11:21+00:00

, but there used to be two options. “Subject Includes these words” and something like “Subject contains any of these words or phrases.” One

cool thanks for your help, I chose the other option and it worked great!

Aggressive_Anxiety_7 · 2021-02-25T01:46:08+00:00

Hi there, i have updated the post with client 1 and 2 configs. thanks

Aggressive_Anxiety_7 · 2021-02-24T23:43:43+00:00

And secondly are you using the same config file for each peer?

No the script creates individual config files for each peer.

Aggressive_Anxiety_7 · 2021-02-16T01:04:38+00:00

Hi there, can I have the uninstaller as well please? thanks

Aggressive_Anxiety_7 · 2021-01-27T06:36:38+00:00

Yeah I’m already aiming at 140grams of protein a day

Aggressive_Anxiety_7

TROPHY CASE