Ask Your Question
1

FQDN Not Working While Tunneling w/ vpnc

asked 2014-03-15 10:50:43 -0500

John D Giotta gravatar image

Not sure if it's a local issue or something configured wrong on the company VPN, but fully qualified domain names do not work when connected.

I have an address development-appsrv01.<fqdn> when connected with vpnc I can not access this address via HTTP. However, only development-appsrv01 will work forcing me to edit the address.</fqdn>

If I perform a nslookup on the FQDN it appears to return all the correct IPs.

Is my firewall configured incorrectly? Could vpnc be the issue?

edit retag flag offensive close merge delete

2 Answers

Sort by » oldest newest most voted
0

answered 2014-10-07 20:06:24 -0500

John D Giotta gravatar image

After further investigation, this blog entry identified the problem.

To fix, edit /etc/nsswitch.conf and remove the text “[NOTFOUND=return]“ as follows:

hosts:          files mdns4_minimal dns mdns4
#hosts:          files mdns4_minimal [NOTFOUND=return] dns mdns4

FQDN is now working.

edit flag offensive delete link more
0

answered 2014-03-15 18:58:55 -0500

Check your DNS server after connecting to VPN. Than use dig to confirm it's resolving properly external and internal hostnames.

if you're resolving this host correctly and just can't get to it via HTTP than maybe just concat this VPN/network administrator?

edit flag offensive delete link more

Comments

cat /etc/resolv.conf reveals nameserver internal IP and "domain" & "search" for the domain

dig on the fqdn returns a single A record IP (the correct internal IP)

John D Giotta gravatar imageJohn D Giotta ( 2014-03-15 20:34:39 -0500 )edit

So looks like you have correct DNS server set and in use and the resolving process is just fine.

You can also try telnet to the tcp 80 port of this host to confirm that there's an issue with the firewall on the server side (assuming you firewall on your desktop is not the case)

Maciej Lasyk aka docent gravatar imageMaciej Lasyk aka docent ( 2014-03-16 05:40:17 -0500 )edit

telnet on the fqdn returns "Name or service not known"

John D Giotta gravatar imageJohn D Giotta ( 2014-03-16 11:36:52 -0500 )edit

And using IP telnet returns something different?

Maciej Lasyk aka docent gravatar imageMaciej Lasyk aka docent ( 2014-03-20 17:18:08 -0500 )edit

telnet on IP gives me a "Connection refused". As expected.

John D Giotta gravatar imageJohn D Giotta ( 2014-03-24 11:25:18 -0500 )edit

Question Tools

2 followers

Stats

Asked: 2014-03-15 10:50:43 -0500

Seen: 217 times

Last updated: Oct 07 '14