Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
254
Views
1
Helpful
2
Replies

Split DNS and Umbrella

likvid
Level 1
Level 1

‎06-17-2024 05:58 PM

This combination doesn't seem to work for Umbrella, for Zscaler it works perfectly.

We have an internal DNS server with the same FQDN and different IP depending if you are connected with the Secure Client VPN or without.

Umbrella can't handle this situation as it only returns the external IP of the FQDN.

How do we solve this? go back to Zscaler?

Labels:
0 Helpful
2 Replies 2

Ken Stieers
VIP
VIP

‎06-17-2024 06:12 PM

Add your external domain to the list of "internal domains" under Deployment/Domain Management.

You could put in external domains, but I reserve that for the weird stuff that just won't work with Umbrella proxy(we use SIG)

ccieexpert
Level 3
Level 3

‎06-18-2024 05:42 PM

Put in internal domains.. external domains will bypass only the web proxy but DNS will still go through the Umbrella DNS and will give the public ip..

0 Helpful
Customers Also Viewed These Support Documents