Buy or Renew
Buy or Renew
NOTICE: OpenDNS reactivated for users in Belgium. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
144
Views
0
Helpful
3
Replies

OpenDNS with Active Directory and multiple networks

mvelatln
Level 1
Level 1

‎08-20-2019 12:33 PM

Hello,

I've been struggling with solving a scenario that may soon become a real big problem.

I have a public location that has public access computers for adults and for children.  In a location without an Active Directory that these PCs connect to, setting up OpenDNS statically at the PCs, on DHCP scopes in the firewall or switch is not a big deal. 

I've put the adults on one public IP through the firewall and youth on another.  Now I have two networks in Umbrella and each with their own policy.  This works fine as long as these PCs point to OpenDNS DNS.


Once added to a Domain Controller I set the forwarders there.  So, despite the difference in what is set in NAT they DNS requests originates from the network that the Domain Controller is on.  So the adults get filtered fine, but the children get filtered with the policy from the adults because to OpenDNS the IP is the same.

My ultimate goal, question, here is about making this work.  Is there some way in Windows DNS or at the switch level to route requests for the domain to the domain controller and everything else go to OpenDNS for internet DNS queries?  The logic makes sense to me in terms of a static route for IPs, but for DNS I'm not sure how to solve it.

 

For example:

Reuqests to mydomain.local should hit the DC and requests to anydomain.com should be out to the internet for example.

And unfortunately they have one domain controller.

 

Thank you,

Mike

 

 

Labels:
0 Helpful
3 Replies 3

rotblitz
Level 6
Level 6

‎08-21-2019 12:14 AM

This forum is not for Umbrella. You better raise a support ticket.

However, you need two public IP addresses and need to route the traffic with configuring persistent routes, at least for the DNS traffic, and DNS forwarding in your DC's DNS server.  Web traffic routing is minor relevant.

0 Helpful

mvelatln
Level 1
Level 1

‎08-22-2019 05:52 AM

My apologies for posting in an inappropriate location. Is there no forum for Umbrella?  I've asked support and perhaps I'll ask again.  Since its sort of not their problem, I thought I'd see if anyone out there has had a similar use case issue like I am.

 

Thanks,

Mike

0 Helpful

rotblitz
Level 6
Level 6

‎08-22-2019 09:01 AM

There is a forum for Umbrella: https://support.umbrella.com/hc/en-us
But this is not a discussion board like this here.  Instead you open a support ticket, link "Submit a request".

0 Helpful
Customers Also Viewed These Support Documents