You write that your setup requires split DNS, which means that when connected to your VPN, the hostname xyz.example.com
should resolve to an internal IP which is included inside your VPN configuration. For this to work, you must have a special DNS server, which is reachable through your VPN, and that DNS server must be pushed to all your clients connecting.
Here are the steps required to pinpoint the problem:
- while connected to your VPN, execute
ping xyz.example.com
to see if:
- the hostname resolves to the internal IP address
- the ping works and the server is actually reachable - to test if the internal IP address is included in the VPN definition. Don't forget to ping the internal IP address manually, if the DNS resolution is not working - you also must make sure that the VPN is working as intended!
- if the hostname does not resolve to the internal IP address, execute
host xyz.example.de 1.2.3.4
where 1.2.3.4
is the IP address of your internal DNS server.
Depending on the outcome of this command:
- if the above command does not resolve this name to the internal IP, check the configuration of your internal DNS server.
- if the host command gives a timeout, you probably need to include the DNS IP inside your VPN definition.
- if the command correctly returns the internal IP address, you need to check your VPN configuration to ensure that the internal DNS server is pushed to the client and actually replaces the one your client has been using! (check
/etc/resolv.conf
on your mac!)
I am pretty sure you will find the issue with these steps.