Kerio Tech Firewall6 User Manual

Chapter 23

Kerio VPN

328

When the VPN tunnel is created, customize these rules according to the restriction re-

quirements (see item 6).

Note: To keep the example as simple and transparent as possible, only traffic rules relevant

for the Kerio VPN configuration are mentioned.

3.

Customize DNS configuration as follows:

•

In configuration of the DNS Forwarder in WinRoute, specify DNS servers to which

DNS queries which are not addressed to the company.com domain will be for-

warded (primary and secondary DNS server of the Internet connection provider

by default).

Figure 23.16

Headquarter — DNS forwarder configuration

•

Enable the Use custom forwarding option and define rules for names in the

filial.company.com

domain. Specify the server for DNS forwarding by the IP

address of the remote firewall host’s interface (i.e. interface connected to the

local network at the other end of the tunnel).

Figure 23.17

Headquarter — DNS forwarding settings