Fedora 26 DNS conflict with concurrent connections

asked 2017-08-22

xgkphdx

updated 2017-08-24 13:13:52 -0500


I have to connect to a remote site via VPN(openconnect) at the office. When VPN connection is on, the local resources stop being resolved.
Basically, it looks like this.
With VPN disabled I have the following in /etc/resolv.conf:

more /etc/resolv.conf
search lan
# Generated by NetworkManager
search lan
nameserver _corp_dns_IP
nameserver _corp_dns_IPv6

So, when I connect to, it works fine. Then, I turn on the VPN and here is how /etc/resolv.conf looks now:

more /etc/resolv.conf
# Generated by NetworkManager
search vpn_domainname local
nameserver _vpn_dns_IP
nameserver _vpn_dns_IP
nameserver _corp_dns_IP
# NOTE: the libc resolver may not support more than 3 nameservers.
# The nameservers listed below may not be recognized.
nameserver _corp_dns_IPv6

When I try to connect to, it is not found:

ping: Name or service not known

If I do nslookup for using corpdnsIP, the correct IP is returned. So, while corpdnsIP is still in /etc/resolv.conf, it is not being queried.

As a workaround, I have just put in /etc/hosts for now. Is it possible somehow configure NetworkManager to fix it?

answered 2017-08-22

villykruse

updated 2017-08-23 02:00:10 -0500

edit the file /etc/NetworkManager/NetworkManager.conf and find the line that says [main]. Add a new line that says dns=none, Then edit /etc/resolv.conf so it has the correct content. The NetworkManager will then not modify the resolv.conf file.

You could also try to set dns=dnsmasq instead of dns=none. Then dnsmasq will become a local dns server which may be able to forward requests to all dns servers. Your /etc/resolv.conf then specifies as the only dns server.

You have to remember that the standard dns resolver only access the first server found in resolv.conf, and the other entries is only backup for the case when the first server is off-line.

Thank you very much! dnsmasq does exactly what I needed.

xgkphdx ( 2017-08-24 )

