wingate clients disconnection
May 26 07 2:39 pm
Hello everyone!!!
i have a question and i'll try to explain my self the better i can.
well, i have a wingate computer configured with two nics one for my local Lan (domain and DHCP) fix ip. and the second one for internet
i'm in a corporate enviroment where my DNS resides in another server of my network. i need this computer (wingate server) to have the lan nic configured with all the domain info.
right now it is configured as i would like to be, my lan card has all the info on the domain, the internet nic i just make it to use the DHCP from the router.
the thing is that sometime the clients disconect or cant open a page on the browser.
i imagine that it is a DNS problem, my question is how can i have my lan card cofigured with everything needed for my domain and the internet works without disconecting the clients??
is there a way that wingate manage the isp DNS for the clients?
i hope u can undertand what i'm trying to explain here
THX in advanced
Coyote
i have a question and i'll try to explain my self the better i can.
well, i have a wingate computer configured with two nics one for my local Lan (domain and DHCP) fix ip. and the second one for internet
i'm in a corporate enviroment where my DNS resides in another server of my network. i need this computer (wingate server) to have the lan nic configured with all the domain info.
right now it is configured as i would like to be, my lan card has all the info on the domain, the internet nic i just make it to use the DHCP from the router.
the thing is that sometime the clients disconect or cant open a page on the browser.
i imagine that it is a DNS problem, my question is how can i have my lan card cofigured with everything needed for my domain and the internet works without disconecting the clients??
is there a way that wingate manage the isp DNS for the clients?
i hope u can undertand what i'm trying to explain here
THX in advanced
Coyote
May 28 07 9:45 pm
the internet nic i just make it to use the DHCP from the router.
--> I would recommend using a Static IP Address when you are troubleshooting this - and if you want to switch it back to DHCP at a later date then that is your choice.
the thing is that sometime the clients disconect or cant open a page on the browser. i imagine that it is a DNS problem.
--> If your instinct is telling you it is DNS problem, then try to use IP Addresses when you loose connectivity for the sake of testing.
http://www.wingate.com = http://210.55.214.36
http://www.google.com = http://72.14.253.147
*And if your mail is hosted by an ISP, you could change the domain names to ip addresses in your email client and use that to test.
my question is how can i have my lan card cofigured with everything needed for my domain and the internet works without disconecting the clients?? is there a way that wingate manage the isp DNS for the clients?
--> See this post: http://forums.qbik.com/viewtopic.php?p=28904#28904
If you still need help then please review the following section of the help file - it will help configure your DNS:
WinGate Help --> WinGate Security model --> WinGate in an Active Directory.
*The latest help file for WinGate 6.2.1 can be downloaded from the following location - you may need to right click and find the properties of the downloaded file and unblock it if you cannot view the contents.
http://downloads.qbik.com/qbiknz2/downl ... teHelp.chm
And to override the DNS Server WinGate will use to resolve internet domain names, then you can enter your ISP / Router DNS Server into the following location:
May 29 07 11:06 am
hello again..
after i send the message i just made a change in the wingate by entering the router gateway to the DNS configuration, but nothing happends, then after reading your reply i changed the configuration but the clients still disconnect.
Now the ISP nic has a fix IP, the submask and the gateway of the router (no DNS on this nic configuration) i just entered the ISP DNS in wingate DNS configuration as you said, but still disconnect.
Any other Idea.
Thanks in advanced
after i send the message i just made a change in the wingate by entering the router gateway to the DNS configuration, but nothing happends, then after reading your reply i changed the configuration but the clients still disconnect.
Now the ISP nic has a fix IP, the submask and the gateway of the router (no DNS on this nic configuration) i just entered the ISP DNS in wingate DNS configuration as you said, but still disconnect.
Any other Idea.
Thanks in advanced
May 29 07 3:12 pm
The information I provided via that link and the reference to the help file should help you confirm your DNS is setup to work with WinGate; did you review them?
And what is your reason for removing the upstream DNS Server from your EXTERNAL NIC?
And what is your reason for removing the upstream DNS Server from your EXTERNAL NIC?
May 30 07 2:44 am
Thanks in advanced for your replies..
well i didnt download/read the help file i use the one in the program, i went to the other link, but is not my case, i'm not using AD i just exported the users from AD and then import them to wingate, if i have to do some of that stuff please let me know...
i just made a change and put the internal DNS into the wingate and until now nothing happends, if that could be a security issue please let me know.
Jecoyote
well i didnt download/read the help file i use the one in the program, i went to the other link, but is not my case, i'm not using AD i just exported the users from AD and then import them to wingate, if i have to do some of that stuff please let me know...
i just made a change and put the internal DNS into the wingate and until now nothing happends, if that could be a security issue please let me know.
Jecoyote
May 30 07 4:10 am
How many DNS Servers do your LAN Clients have on their network cards, and where do they point?
May 30 07 5:12 pm
Hello again.
we have a DHCP running in our standalone server and the DNS are pointing to two different servers in the domain.
Putting the lan side DNS in wingate can became a security breach???
ask cause after i use the lan DNS in wingate nobody complain about internet, but i dont want this to be a risk, that's why i'm asking you about...
thanks again for your help
Jecoyote
we have a DHCP running in our standalone server and the DNS are pointing to two different servers in the domain.
Putting the lan side DNS in wingate can became a security breach???
ask cause after i use the lan DNS in wingate nobody complain about internet, but i dont want this to be a risk, that's why i'm asking you about...
thanks again for your help
Jecoyote
May 30 07 6:43 pm
Could you please consider re-reading the following section of the WinGate help file, to configure your 2 AD DNS Servers in the way we recommend?
WinGate 6.2.1 help file --> WinGate Security model --> WinGate in an Active Directory --> WinGate in an Active Directory
Basically, your LAN Clients (including the WinGate server LAN Client) will have the AD DNS Servers set on their network cards pointing towards the LAN.
The AD DNS Servers will be set to forward to WinGate’s DNS server.
WinGate will be setup to never send the DNS query received by the AD DNS Server, back to the AD DNS Servers (to avoid looping), it will send it on to an upstream DNS Server on your External network card. Putting the AD DNS Server into the Advanced Options in WinGate will avoid the looping.
(Windows) Start menu --> Programs --> WinGate --> Advanced Options --> DNS.
--> My understanding of this post is that you want WinGate to handle the internet DNS requests. So forcing the WinGate application to use the AD DNS Server for internet DNS lookups is not your desired result as far as I am concerned, and hence this question is irrelevant i.e. I do not have time to research that scenario.
WinGate 6.2.1 help file --> WinGate Security model --> WinGate in an Active Directory --> WinGate in an Active Directory
Basically, your LAN Clients (including the WinGate server LAN Client) will have the AD DNS Servers set on their network cards pointing towards the LAN.
The AD DNS Servers will be set to forward to WinGate’s DNS server.
WinGate will be setup to never send the DNS query received by the AD DNS Server, back to the AD DNS Servers (to avoid looping), it will send it on to an upstream DNS Server on your External network card. Putting the AD DNS Server into the Advanced Options in WinGate will avoid the looping.
(Windows) Start menu --> Programs --> WinGate --> Advanced Options --> DNS.
Putting the lan side DNS in wingate can became a security breach???
--> My understanding of this post is that you want WinGate to handle the internet DNS requests. So forcing the WinGate application to use the AD DNS Server for internet DNS lookups is not your desired result as far as I am concerned, and hence this question is irrelevant i.e. I do not have time to research that scenario.