Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Resolving names over wireguard subnet
« previous
next »
Print
Pages: [
1
]
Author
Topic: Resolving names over wireguard subnet (Read 720 times)
kss
Newbie
Posts: 22
Karma: 1
Resolving names over wireguard subnet
«
on:
April 24, 2024, 09:27:55 pm »
I apologize if this is an already answered question --
I have connected my two sites using wireguard VPN site to site setup. How do you resolve names across the VPN? I am able to ping the far-end machines by their IP addresses, from either site, but not by name.
Both sites run similarly configured opnsense firewalls; both sites use unbound. I tried adding the DNS server name of the far end site to the DNS server list but that didn't work. I even tried running WINS (gasp!) at both sites on a raspberry pi that is running pi-hole, again, no luck. I seem to be missing something fundamental here, for which I seek help.
Logged
Patrick M. Hausen
Hero Member
Posts: 6797
Karma: 571
Re: Resolving names over wireguard subnet
«
Reply #1 on:
April 24, 2024, 09:47:03 pm »
Use different domains for both sites. Add a domain override pointing to the remote unbound for the remote domain at both sites.
There is to my knowledge no solution to "merge" all hosts on both sides into one domain with OPNsense only. If you run Active Directory or similar infrastructure it's rather trivial, because you normally have a DC at each site.
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do.
(Isaac Asimov)
kss
Newbie
Posts: 22
Karma: 1
Re: Resolving names over wireguard subnet
«
Reply #2 on:
April 25, 2024, 03:50:07 pm »
I will try that, thanks!
Logged
kss
Newbie
Posts: 22
Karma: 1
Re: Resolving names over wireguard subnet
«
Reply #3 on:
May 06, 2024, 07:28:24 pm »
Thanks for your insight -- that I should
have different domain names at the two sites connected via VPN
, I have a more functional site-to-site VPN.
I have name to IP resolution when I ping computers at the other site, although the ping itself times out
I added both domains to the LAN DHCP4 search list, now I can use the hostname or the FQDN for name resolution
RDP and VNC work across the VPN from any computer to any other computer by just using the name, IP address, or FQDN
Only thing that is still blocked is being able to browse directories using file manager -- both styles of addressing -- \\PC-2 and \\192.168.2.2 -- time out.
Pretty sure these are being blocked by the firewall rules, but am nervous about experimenting with them.
«
Last Edit: May 15, 2024, 09:48:22 pm by kss
»
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Virtual private networks
»
Resolving names over wireguard subnet