Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

DNS issue with BGP

MattMunhall
Comes here often
‎Dec 12 2023 1:08 PM
‎Dec 12 2023 1:08 PM

DNS issue with BGP

I have a MX250 setup a concentrator in our DC and a MX95 setup as a test device.  I have successfully setup a VPN tunnel via BGP and can ping and connect to my internal network via IP address. However I am not able to via its hostname.  For DHCP on the MX95 I have specified the DNS server I am wanting to connect and my computer does connect and see it.  If I try RDPing into a boxes IP address it will however the hostname will not and I am not able to ping it either.  What am I missing?

 

Thanks.

Labels:
0 Kudos
Subscribe
8 Replies 8
alemabrahao
Kind of a big deal
Kind of a big deal
‎Dec 12 2023 1:12 PM
‎Dec 12 2023 1:12 PM

This could be due to a few different factors. 

 

Ensure that the DNS server specified in the DHCP settings of the MX95 is able to resolve the hostnames for your internal network.

 

Check the DNS settings on the client devices. They should be configured to use the DNS server that can resolve the hostnames of your internal network. If a public DNS server (like 8.8.8.8) is used, it won’t be able to resolve internal network hostnames.

 

If you recently made changes to your DNS entries, it might take some time for the changes to propagate through the network.

 

Check if there are any firewall rules that might be blocking DNS traffic.

 

Make sure that the VPN configuration allows for DNS traffic to pass through. In some cases, you might need to adjust the settings of your VPN to allow for this.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to alemabrahao
MattMunhall
Comes here often
‎Dec 12 2023 1:29 PM
‎Dec 12 2023 1:29 PM

DHCP can resolve hostname as this works on our Cisco equipment, just not Meraki currently.  My ipconfig does show my internal networks DNS.  Not DNS changes have been made.  This is a test network, with currently no firewall rules in places.  

 

I am not sure where I would make changes on the VPN config for DNS traffic to flow through as when I am got site to site VPN this site is a spoke and  do not see an option for this.

0 Kudos
Subscribe
In response to MattMunhall
alemabrahao
Kind of a big deal
Kind of a big deal
‎Dec 12 2023 1:33 PM
‎Dec 12 2023 1:33 PM

An easier question to answer, can you ping the DNS server IP from the client machine? Or even a tracert?
 
Otherwise, do a packet capture.
I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to alemabrahao
MattMunhall
Comes here often
‎Dec 12 2023 1:35 PM
‎Dec 12 2023 1:35 PM

Yes, I can successfully do a ping and also traceroute to my DNS server from my machine that is connected to the MX.

0 Kudos
Subscribe
In response to MattMunhall
alemabrahao
Kind of a big deal
Kind of a big deal
‎Dec 12 2023 1:37 PM
‎Dec 12 2023 1:37 PM

What about the DNS suffix, is the client receiving it via DHCP?

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
In response to alemabrahao
MattMunhall
Comes here often
‎Dec 12 2023 1:48 PM
‎Dec 12 2023 1:48 PM

If I do a ping of the FQDN of an internal server it can ping and also connect, just unable to connect to the hostname of the box.   yes, the client is receiving DNS via DHCP as well.

0 Kudos
Subscribe
In response to MattMunhall
alemabrahao
Kind of a big deal
Kind of a big deal
‎Dec 12 2023 4:16 PM
‎Dec 12 2023 4:16 PM

I don't see any routing issues in this case. Which suggests that it could be something on the server or some blockage on the network. I suggest you open a support case.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
Subscribe
RaphaelL
Kind of a big deal
Kind of a big deal
‎Dec 12 2023 1:15 PM
‎Dec 12 2023 1:15 PM

The easiest way to troubleshoot that would be to run multi-point packet capture. One on your MX spoke LAN , MX spoke Site-To-Site and one on your MX HUB site-to-site. This will help you to narrow down where the issue is.

 

If you do a nslookup y.y.y.y x.x.x.x  ( where x.x.x.x is your DNS server ) and you try a query, does it work ?

0 Kudos
Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.