Setting DHCP to OpenDNS, but internally DNS still working?

LV_MW_MSP
Getting noticed

Setting DHCP to OpenDNS, but internally DNS still working?

I have a network where DHCP was set to proxy to upstream DNS. ipconfig /all shows DNS for internal clients is Meraki local IP. I then set DHCP to proxy to OpenDNS. I did ipconfig /renew and now DNS is set as 208.67.222.222 and 208.67.220.220

 

How come when I ping internal DNS names (like device1, device2, device3) it still works? If I do NSLookup, it fails, but if I ping, it does resolve the internal IP address properly. How is that working if the DNS servers is set as OpenDNS?

 

Also note, I went as far as testing multiple computers, checking HOSTS file, and doing ipconfig /flushdns -- somehow the device knows to search locally for that device instead of using OpenDNS DNS servers.

9 REPLIES 9
mmmmmmark
Building a reputation

I wonder if doing an ipconfig /flushdns would stop the inside stuff from resolving?

 

Edit: I'll just read your ENTIRE post next time, nothing to see here!

Hehe, yeah, I already tried the ipconfig /flushdns

I actually have a client running this configuration for a year now, and same thing, somehow internal names can resolve. I can ping any hostname from any computer, and it will somehow resolve internally.
mmmmmmark
Building a reputation

With DNS, there's the option to search a local domain too, that might be what's going on?

There is no internal domain. Both of these networks are WORKGROUP -- both also have a Synology NAS. From any computer, I can open cmd prompt and type ping NAS, and it resolves.

I can also do ping HOST of any of the computers in the network, it works for all of them.
mmmmmmark
Building a reputation

Until someone smarter than me pipes in, I'd suggest to a packet capture to see where the clients are getting the DNS info from.

PhilipDAth
Kind of a big deal
Kind of a big deal

There are many methods of name resolution.  NetBIOS broadcast, multicast DNS/mDNS/Bonjour, WINS, host file, unicast DNS.

 

You changed the DNS (aka unicast DNS).  However your machine is still able to use broadcast and multicast methods to do local name resolution (which is not the same as DNS).

 

This is the reason why you can still ping machines locally, but can not locate them via nslookup.

PhilipDAth
Kind of a big deal
Kind of a big deal

If it is a Windows machine it may be using NetBios.  The below command shows the NetBios name resolution cache:

nbtstat -S


@PhilipDAthwrote:

If it is a Windows machine it may be using NetBios.  The below command shows the NetBios name resolution cache:

nbtstat -S


When I check my "as futzed by Microsoft" Win 10 workstation, it makes no use of NetBios, and I do make use of OpenDNS as well as other Name servers.

 

Microsoft has recently decreed that we are not allowed to use "rude words" in Word documents . . . fortunately, Yiddish is a hobby of mine. The common American term futz has interesting, and useful, Middle High German and Yiddish roots.

Robin St.Clair | Principal, Caithness Analytics | @uberseehandel
Adam
Kind of a big deal

Set your DHCP to give out your internal DNS servers.  Then set your internal DNS servers to forward to OpenDNS.  We have the same setup and that is their recommended configuration.  If you have any public wifi networks or anything that doesn't need to be attempting to use your internal DNS servers you can set those to custom DNS and specify those OpenDNS IPs.  Note:  All of our device management IPs just use public DNS like OpenDNS.  Those are just for checking into the internet so no need to have those using internal DNS which is likely less reliable. 

Adam R MS | CISSP, CISM, VCP, MCITP, CCNP, ITILv3, CMNO
If this was helpful click the Kudo button below
If my reply solved your issue, please mark it as a solution.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels