Kerio Tech KERIO WINROUTE FIREWALL 6 User Manual

Chapter 23

Kerio VPN

314

This step will create rules for connection of the VPN server as well as for communication

of VPN clients with the local network (through the firewall).

Figure 23.33

Headquarter — default traffic rules for Kerio VPN

3.

Customize DNS configuration as follows:

•

In the WinRoute’s DNS module configuration, enable DNS forwarder (forwarding

of DNS requests to other servers).

•

Enable the Use custom forwarding option and define rules for names in the

filial1.company.com

and filial2.company.com domains. To specify the for-

warding DNS server, always use the IP address of the WinRoute host’s inbound

interface connected to the local network at the remote side of the tunnel.

Figure 23.34

Headquarter — DNS forwarding settings

•

Set the IP address of this interface (10.1.1.1) as a primary DNS server for the

WinRoute host’s interface connected to the LAN 1 local network. It is not necessary

to set DNS at the interface connected to LAN 2.

•

Set the IP address 10.1.1.1 as a primary DNS server also for the other hosts.