[Openswan Users] Windows dns lookup over IPSEC/L2TP

Duncan Reed duncan at elminster.com
Sat Nov 6 12:02:00 CET 2004

>> On Wed, 2004-11-03 at 23:19, Jacco de Leeuw wrote:
>> > Duncan Reed schreef:
>> >
>> > >>>When I browse or do an nslookup it uses the primary dns on the
>> Ethernet
>> > >>>adaptor connection, i.e. the ISP, rather than those specified by
> the
>> VPN
>> > >>>connection.
>> >
>> > I get the same result. IPCONFIG /ALL lists the DNS servers from the
>> > connection after 'dial-up' so I figured it would be OK but a tcpdump
>> > shows that the original DNS servers are used.
>> >
>> > It should be a Windows client problem because on the Linux
> L2TP/IPsec
>> > server everything is configured OK.
>> >
>> > The only information I could find at this stage is:
>> > http://www.jsiinc.com/SUBM/tip6100/rh6175.html
>> Okay thanks, I shall continue my search for a solution at least I know
> I
>> haven't done anything obviously wrong.
>> Seeing how MS seem to have tweaked DNS, DHCP etc so that it integrates
>> with Win2k server I wondered if it might be a windowism rather than a
>> Linux side config issue.
>> Duncan
> FYI When I tweaked Jacco's config to work with IPCop 1.4 Alpha and
> Beta's to passthrough traffic to a windows RRAS server doing L2TP, I had
> no issues browsing or doing lookup to the internal servers.  I would
> have to mod my IPCop 1.4.0 final and retest again to give dumps of what
> is happening.

Could be because you used windows for l2tp or maybe your windows client
setup is different some how. Although I get same result on vanilla NT and
a varity of XP machines and windows 2k.


More information about the Users mailing list