Hi all,<\/p>\n

Advertisement

Close

I noticed that sometimes, when users connect to the VPN (forticlient), their local IP address gets passed through and registered in DNS in addition to their VPN IP address.<\/p>\n

Advertisement

Close

I need this to stop, for multiple reasons.<\/p>\n

Does anyone know how to get this behavior to stop?<\/p>\n

FWIW, DNS is all windows server.<\/p>\n

Thanks<\/p>","upvoteCount":10,"answerCount":5,"datePublished":"2021-03-17T14:33:56.000Z","author":{"@type":"Person","name":"Dukat","url":"https://community.spiceworks.com/u/Dukat"},"suggestedAnswer":[{"@type":"Answer","text":"

Hi all,<\/p>\n

I noticed that sometimes, when users connect to the VPN (forticlient), their local IP address gets passed through and registered in DNS in addition to their VPN IP address.<\/p>\n

I need this to stop, for multiple reasons.<\/p>\n

Does anyone know how to get this behavior to stop?<\/p>\n

FWIW, DNS is all windows server.<\/p>\n

Thanks<\/p>","upvoteCount":10,"datePublished":"2021-03-17T14:33:56.000Z","url":"https://community.spiceworks.com/t/vpn-passing-local-ip-to-dns-how-to-stop/794062/1","author":{"@type":"Person","name":"Dukat","url":"https://community.spiceworks.com/u/Dukat"}},{"@type":"Answer","text":"

hello,<\/p>\n

maybe through something like:<\/p>\n

HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters\\DisableDynamicUpdate<\/p>\n

<\/a>alex<\/h1>","upvoteCount":0,"datePublished":"2021-03-17T15:16:50.000Z","url":"https://community.spiceworks.com/t/vpn-passing-local-ip-to-dns-how-to-stop/794062/2","author":{"@type":"Person","name":"achauvin","url":"https://community.spiceworks.com/u/achauvin"}},{"@type":"Answer","text":"

Would that stop it from updating when they are in the office too? If they go into the office, I want it to register so we have the IP we can talk to.<\/p>","upvoteCount":0,"datePublished":"2021-03-17T15:19:26.000Z","url":"https://community.spiceworks.com/t/vpn-passing-local-ip-to-dns-how-to-stop/794062/3","author":{"@type":"Person","name":"Dukat","url":"https://community.spiceworks.com/u/Dukat"}},{"@type":"Answer","text":"

IOt’s been a while, but last time I had a FortiNet firewall using FortiClient to connect, it was configured in such a way that the local machine’s Ip address was NAT’ed to an address in the VPN definition range. I would look closer at how you have the VPN set up and see if you can have it use an address from that space rather than the actual address of the machine on its local network.+<\/p>","upvoteCount":0,"datePublished":"2021-03-17T18:38:42.000Z","url":"https://community.spiceworks.com/t/vpn-passing-local-ip-to-dns-how-to-stop/794062/4","author":{"@type":"Person","name":"spiceuser-gg3xf","url":"https://community.spiceworks.com/u/spiceuser-gg3xf"}},{"@type":"Answer","text":"

Richard,<\/p>\n

Since it is hosted for us I’ll have that looked into. THanks<\/p>","upvoteCount":0,"datePublished":"2021-03-17T19:31:55.000Z","url":"https://community.spiceworks.com/t/vpn-passing-local-ip-to-dns-how-to-stop/794062/5","author":{"@type":"Person","name":"Dukat","url":"https://community.spiceworks.com/u/Dukat"}}]}}