How DNS traffic behaves when we have Enterprise Domains configured in RAP-NG(IAP VPN) deployment?
The four modes available in the RAP-NG architecture are
2.Centralized L2 mode
3.Distributed L2 mode
4.Distributed L3 mode
In all the above mode the common behavior is, Internet traffic is source NATed with Master IAPs local IP. The DHCP and corporate traffic behavior changes depending up on mode used in the RAP-NG architecture.
Below is the behavior of the DNS traffic
In the above example if the enterprise domain is configured for arubanetworks.com, then DNS resolution for hostnames in arubanetworks.com will be forwarded to the clients' default DNS server.
The DNS resolution for rest of all the hostnames domains ex. google.com, yahoo.com etc. will be Scr-NATed to the local DNS server of the IAP.
If you need to allow all the hostnames domains to be forwarded to the clients' default DNS server we need to use "*" in the enterprise domain configuration
From Web UI:
To create/ View
1. Hit settings
2. Click on Show advanced options
3.Select Enterprise Domains
To View Enterprise domain setting from CLI;
#show running-config | begin internal-domains
To Create Enterprise domain from CLI:
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2020 Hewlett Packard Enterprise Development LPAll Rights Reserved.