OPNsense Forum

Archive => 16.1 Legacy Series => Topic started by: shornesr on April 13, 2016, 06:39:48 pm

Title: ipsec vpn and domain access
Post by: shornesr on April 13, 2016, 06:39:48 pm

I have a remote network connected via an IPsec vpn. I can ping back and forth but how do I configure so that I can get to computers via the domain names? Also I may want to authenticate users to an Active Directory Domain on the other side of the VPN...

Title: Re: ipsec vpn and domain access
Post by: igorek24 on April 14, 2016, 08:33:13 pm

First, you need to use your DC's as your DNS servers  and specify your local domain in DHCP server settings ( if DHCP is used), then you need to make sure that the firewall rules are setup correctly on both local and remote site to allow communication between networks. You can just setup any to any rules if remote network is completely trusted, I personally like to limit by only required ports even if the network is trusted.
Note: once you change your DHCP server settings, you need to renew your IP on your clients. you can do this by ipconfig /release and ipconfig /renew on Windows and for Linux you must restart the network or NetworManager services (systemctl restart network will work on most recent Linux distros).

(https://www.theigor.net/imgs/var/albums/Forums/img1.png)
Hope this helps a bit.