Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

10.5: PPTP VPN and fully qualified domain names Network
Are you using PPTP to connect to a Microsoft ISA server for VPN? Do your internal machines on the VPN side of the connection no longer resolve except when you use a fully qualified domain name?

The PPTP VPN settings under 10.5 provide some additional options, which you can reach via the Network System Preferences panel. Go to VPN, and click on Advanced, then view the Options tab. The setting is "Send all traffic over VPN connection." If this is unchecked, you will be unable to resolve internal hostnames without typing the fully qualified domain name. If you check it, you will be able to refer to your internal hostnames by the short name. This occurs no matter whether you have your VPN local DNS search domain typed in there or not.

I think this may in fact be a bug in 10.5, since it presumably should work without have to force all the traffic over the VPN.
    •    
  • Currently 3.00 / 5
  You rated: 4 / 5 (4 votes cast)
 
[12,825 views]  

10.5: PPTP VPN and fully qualified domain names | 5 comments | Create New Account
Click here to return to the '10.5: PPTP VPN and fully qualified domain names' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
10.5: PPTP VPN and fully qualified domain names
Authored by: primitiveworker on Nov 27, '07 05:02:49PM

You can resolve machines without sending all traffic through the VPN by creating a simple textfile named yourdomain.com with a single line "nameserver internal.ip.of.nameserver" and placing it in a magic directory /etc/resolver (which you may need to create).

So something like this will set you up:


sudo mkdir /etc/resolver
sudo echo "nameserver internal.ip.of.nameserver" > /etc/resolver/yourdomain.com
Where yourdomain.com is the domain you are trying to resolve and internal.ip.of.nameserver is the ip of the nameserver from the vpn-side.



[ Reply to This | # ]
10.5: PPTP VPN and fully qualified domain names
Authored by: TrumpetPower! on Dec 01, '07 10:47:24AM

sudo echo "nameserver internal.ip.of.nameserver" > /etc/resolver/yourdomain.com

This will run echo as root, but the redirection (“>”) is done by your own login shell. Unless that is itself a privileged process — in which case there’s no point in running sudo — then it’ll fail for lack of permissions.

The way I personally deal with such things is by running sudo vi, but a novice is probably better off creating the file as you would any other file (such as with TextEdit), saving it in your home directory, and then using sudo to move it into place.

Or, with OS X, you should be able to do it all through the GUI and have it prompt you for an appropriate password whenever required. You might have to use “Go to Folder” (under the “Go” menu of the Finder) to get to the right folder. And it might not work at all…but it really should if it doesn’t….

Cheers,

b&



[ Reply to This | # ]
10.5: PPTP VPN and fully qualified domain names
Authored by: dfbills on Dec 02, '07 09:00:07AM

primitiveworker: What is the order of precedence here?

/etc/resolv.conf
/etc/resolver/yourdomain.com


---
-d



[ Reply to This | # ]
10.5: PPTP VPN and fully qualified domain names
Authored by: dfbills on Nov 28, '07 05:08:16AM

FYI- The same thing happens on the iPhone.

---
-d



[ Reply to This | # ]
10.5: PPTP VPN and fully qualified domain names
Authored by: mclayville on Nov 28, '07 10:35:50AM

10.4 behaves exactly the same way as the original poster describes, so this is nothing new in 10.5. I tried the resolver trick of the first commenter and could not get that to work.



[ Reply to This | # ]