Short name resolution on NPA

  • 20 December 2023
  • 2 replies
  • 87 views
S

Hello,

 

I have a problem with the resolution of short names on NPA.
Access to my FQDN resources works perfectly. But with the short name, the resolution doesn't work.


I have a private app DNS with host "*.mydomain.local" and port 53.
Resolution works perfectly on my publishers.
My network openings are made on the firewall side.
But despite all this, I have the impression that the client is trying to resolve via public DNS rather than my local DNS, even though these are correctly configured in the publisher's revolv.conf (as is the domain name).

 

Do you have a suggestion?

Thank you

2 replies

S
Rank
Userlevel 6
Badge +16

Hello @Saga,

How is the local endpoint configured? Does it have the same mydomain.local as it's DNS suffix?    There also may be a few other reasons why NPA is not intercepting the DNS such as DNS over HTTPS.  

 

Sam ShiflettNetskope Solution Architect - North America
S

The DNS suffix is retrieved automatically, like this, from the endpoint. And on the Netskope ZTNA side, we have a rule that specifies the DNS suffix to be used for ZTNA connections

 

(Sorry it's in French)

 

Reply


Terms & ConditionsCookie settings