From 471b68698a9e64877c1f4611fa216ee8434da30f Mon Sep 17 00:00:00 2001 From: Slair1 Date: Fri, 28 Jul 2017 03:27:28 -0500 Subject: [PATCH] CLOUDSTACK-10016: VPC VR doesn't respond to DNS requests from remote access vpn clients (#2201) When enabling remote access VPN, a new interface is created upon client connecting via VPN. The DNS service (dnsmasq) is set only to listen on interfaces that are active when it starts. Thus VPN users are provided the VR's IP address for DNS resolution, but it is not actually listening for DNS requests. --- systemvm/patches/debian/config/etc/vpcdnsmasq.conf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/systemvm/patches/debian/config/etc/vpcdnsmasq.conf b/systemvm/patches/debian/config/etc/vpcdnsmasq.conf index d46d6236950..6cfc433cecf 100644 --- a/systemvm/patches/debian/config/etc/vpcdnsmasq.conf +++ b/systemvm/patches/debian/config/etc/vpcdnsmasq.conf @@ -90,7 +90,7 @@ except-interface=lo # want dnsmasq to really bind only the interfaces it is listening on, # uncomment this option. About the only time you may need this is when # running another nameserver on the same machine. -bind-interfaces +#bind-interfaces # If you don't want dnsmasq to read /etc/hosts, uncomment the # following line.