In networks where the internal DNS service is used to resolve internal domain names, which remote users access through VPN solutions, it is essential to include the details of the corresponding DNS servers in the VPN settings.
Panda GateDefender Integra can send this information along with the new IP addresses assigned to remote users.
Steps for configuring the appliance to use DNS servers for PPTP and L2TP VPNs
- Go to the Panda GateDefender Integra administration console.
- Click on VPN in the panel on the left.
- Then select VPN management, and then L2TP (or PPTP) VPN management.
The next screen shows the necessary parameters to configure a VPN in GateDefender Integra using L2TP (PPTP).
- Enter the IP address of the primary DNS server. By clicking on the icon next to the DNS servers options, you can change the text field. You can do this through a drop-down menu, from which you can choose the value to assign to this option (in this case, primary DNS).
- Click on OK to save the changes.
Apart from modifying the L2TP (or PPTP) settings, you must also define a new firewall rule that permits resolution of DNS names from IP addresses reserved for remote VPN users to internal DNS servers.
Go to the Panda GateDefender Integra administration console.
Then, click on Firewall in the panel on the left.
Then, click on Add to define a new rule.
The new firewall rule will be applied to traffic sent from the IP addresses reserved for remote users (in this case, L2TP VPN). The IP address of the internal DNS server must be specified as the destination. This rule will be applied to the DNS service.
After configuring the new firewall rule, the settings screen will be similar to that shown in the screenshot below:
Click on OK to save the changes.
Another way to enable use of internal DNS servers is based on the remote user settings, where DNS servers and the unqualified name resolution options can be entered.