If the domain name used internally is the same as that used externally, then once the VPN is disconnected, with that resolver still in place, it will attempt to resolve DNS using that resolver over the disconnected VPN causing subsequent connections to the actual VPN to fail. However, when the VPN disconnects, this should be removed. When on the VPN, this allows the user to resolve a hostname such as. For example, a resolver for is added here. ![]() When connecting to the VPN, an entry is added to /etc/resolver for the domain name associated with resources behind the VPN tunnel. ![]() I have noticed that at times when using FortiClient for remote access VPN connections with MacOS, that after disconnecting from the VPN, the DNS settings added by FortiClient for DNS resolution over the VPN, fail to be removed.
0 Comments
Leave a Reply. |