Kerio Tech Firewall6 User Manual

Chapter 23

Kerio VPN

314

DNS

Figure 23.4

VPN server settings — specification of DNS servers

Specify a DNS server which will be used for VPN clients:

•

Use WinRoute as DNS server — IP address of a corresponding interface of WinRoute

host will be used as a DNS server for VPN clients (VPN clients will use the DNS for-

warder).

If the DNS Forwarder is already used as a DNS server for local hosts, it is recommended

to use it also for VPN clients. The DNS forwarder provides the fastest responses

to client DNS requests and possible collision (inconsistency) of DNS records will be

avoided.

Note: If the DNS forwarder is disabled (refer to chapter

8.1

), the option is not available.

•

Use specific DNS servers — primary and secondary DNS servers specified through this

option will be set for VPN clients.

If another DNS server than the DNS forwarder in WinRoute is used in the local network,

use this option.

Advanced

Listen on port

The port on which the VPN server listens for incoming connections (both TCP and UDP

protocols are used). The port 4090 is set as default (under usual circumstances it is not

necessary to switch to another port).

Note:

1.

If the VPN server is already running, all VPN clients will be automatically disconnected

during the port change.

2.

If it is not possible to run the VPN server at the specified port (the port is used by

another service), the following error will be reported in the Error log (see chapter

22.8

)