Forum Discussion

BW_TJ's avatar
BW_TJ
Copper Contributor
Jun 29, 2021

Azure Virtual Network Gateway DNS lookup

Morning all,

 

We are in the midst of setting up an Azure Virtual Network Gateway and I have hopefully, a quick question.

 

We have updated our VPN XML file but cannot work out what we need to add to allow DNS FQDN lookups, for example:

 

If I ping product-sql then I get no response.

If I ping product-sql.domain.com then I do get a response.

 

Our DNS servers are specified in the profile and port 53 is allowed for lookups in our NSG.

  • I assume if you ping: 'product-sql.' #Include the dot, does it respond?

    If that's the case, it looks like a lookup problem (Windows may be trying to add an invalid FQDN), the easiest way around it is use the FQDN for all your lookups, I've had to change drive mapping in the past for the site to site VPN's to use the FQDN.

    You can also try this test: On the clients, under TCP/IP properties/Advanced/DNS, ensure that "Append primary and connection-specific DNS suffixes" is selected and also that "Append parent suffixes of the primary DNS suffix" is checked.

Resources