Hi! I've 2 problems which I can't resolve. But before a little bit context. I've 3 clouds. First is for management here I've netmaker. To other with some applications in private VPC with netclient on public hosts. Both VPCs have private DNS. I want create network where ext. clients connect to admin server and have access to both VPCs but from first VPC is not allowed connect to second one. I create network (on screen with graph). Add all DNS servers to "Default Ext Client DNS". Everything works well for "bo-dev-bastion": DNS, routing and etc. But for other branch doesn't work anything. So problems are: 1) As I've understood "Default Ext Client DNS" work only with one DNS server (with first in list). Can I add DNS resolvers to CoreDNS for my private DNS zones? 2) I can't understand why routing in second network doesn't work. It goes till netclient "ts-bastion-staging" and that's all. This traceroute from my ext. client: ```bash traceroute 10.0.1.4 traceroute to 10.0.1.4 (10.0.1.4), 64 hops max, 52 byte packets 1 ip-10-10-16-254 (10.10.16.254) 78.974 ms 77.615 ms 77.941 ms 2 ip-10-10-16-2 (10.10.16.2) 115.606 ms 122.236 ms 117.560 ms 3 * * * 4 * * * 5 * * * 6 * * * 7 * * * 8 * * * 9 * * * 10 * * * 11 *^C ``` And this one from docker container with netclient. GRAVITL #wireguard

Hi! I've 2 problems which I can't resolve. But bef...

chilly-raincoat-92690

03/30/2023, 9:26 AM

Hi! I've 2 problems which I can't resolve. But before a little bit context. I've 3 clouds. First is for management here I've netmaker. To other with some applications in private VPC with netclient on public hosts. Both VPCs have private DNS. I want create network where ext. clients connect to admin server and have access to both VPCs but from first VPC is not allowed connect to second one. I create network (on screen with graph). Add all DNS servers to "Default Ext Client DNS". Everything works well for "bo-dev-bastion": DNS, routing and etc. But for other branch doesn't work anything. So problems are: 1) As I've understood "Default Ext Client DNS" work only with one DNS server (with first in list). Can I add DNS resolvers to CoreDNS for my private DNS zones? 2) I can't understand why routing in second network doesn't work. It goes till netclient "ts-bastion-staging" and that's all. This traceroute from my ext. client:

Copy code

bash
traceroute 10.0.1.4

traceroute to 10.0.1.4 (10.0.1.4), 64 hops max, 52 byte packets
 1  ip-10-10-16-254 (10.10.16.254)  78.974 ms  77.615 ms  77.941 ms
 2  ip-10-10-16-2 (10.10.16.2)  115.606 ms  122.236 ms  117.560 ms
 3  * * *
 4  * * *
 5  * * *
 6  * * *
 7  * * *
 8  * * *
 9  * * *
10  * * *
11  *^C

And this one from docker container with netclient.

https://cdn.discordapp.com/attachments/933522376249974794/1090930037177450507/image.png▾

2 Views

Previous Next