Menu

Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sign In Register

Alternative DNS servers

ZbebusZbebus Newbie ✭
in Secure Mobile Access Appliances

Hi.

I'm using three instances of SMA , ver. 12.4.3. with Central Management Console. I have configured DNS servers but it is possible to configure alternative DNS for every Realm or users group? I need to assign some users different DNS servers than those configured globally.

Thanks for answer

regards

Category: Secure Mobile Access Appliances
Reply

Best Answers

  • CORRECT ANSWER
    ViveksViveks SonicWall Employee
    Answer ✓

    SMA provides option to configure DNS servers per user-community, can you check if that helps? This DNS server config is part of "IP Tunnel address pools" and can be configured at Realms → Your realm → Communities → Your Community → Tunnel Access tab → IP Address pools.

  • CORRECT ANSWER
    ViveksViveks SonicWall Employee
    Answer ✓

    Yes, that is correct.

Answers

  • ZbebusZbebus Newbie ✭

    Hi, Thanks for your answer,

    In all Realms i have CMS IP POOL and in : Configure/Define Policy/Network Tunnel Service i have three adress pools, each for every SMA, atcive option: All appliance address pool configuration is controlled by the central policy on the CMS (recommended).

    Does this mean that I have to create a new address pool just for this Realm with a different DNS configuration?

    Regards

  • ZbebusZbebus Newbie ✭

    everything works :)

    thanks for your help

  • ZbebusZbebus Newbie ✭

    Hi.
    I'll come back with a question.
    I have three SMAs, each working with its own address class, managed by CMS. I have three realms that use these classes.
    When I assign a new class for a new Realm with different DNS, and send the configuration to 3 SMAs, then connecting to this Realm I will receive a new class with new DNSs, and this class will be available on each SMA, so if one user connects to SMA01 and gets an IP from this class, and another to SMA02 and also gets an IP from this class, how will the packet return to each of the users?
    At the moment, each of the 3 SMAs has its own IP address class. So the user gets an IP from a class unique to each SMA instance.

    If you need more information, let me know.

  • ZbebusZbebus Newbie ✭

    Hi,

    Maybe I'll ask the question differently.
    Can I use in the Realm>>community>tunnel access configuration - only one network (e.g. 10.10.10.0/24). If I use GTO with three instances? Realm will be on each of the three SMAs,
    at the moment in the configuration I have assigned networks for each SMA separately. (e.g. sma1 - 10.10.11.0/24, sma2 - 10.10.12.0/24, sma3 - 10.10.13.0/24)

    regards

  • ViveksViveks SonicWall Employee

    Am not sure I got your question entirely, can you reach Sonicwall Tech support who may be able to guide you based on your network setup?

    (Technically, if a user falls on one of the appliances under CMS, they will get the address-pool settings based on what is configured on the appliance. You can login to each of your appliances and check if configurations are as expected based on the network on which the appliance is deployed).

  • ZbebusZbebus Newbie ✭

    ok, thanks.
    Because I mean can I use the address pool assigned for Realm, but I think in the case of CMS and 3 SMA - no, because the address pool cannot be the same on each SMA instance. Now CMS manages it and assigns a separate IP address pool for each instance, I just wanted to assign different DNS servers for one connection :)

Sign In or Register to comment.