d3nnis.c

Q: cannot access .local domain/intranet site when connected to the VPN after the IOS 8 update.

After updating to IOS 8. I can no longer access .local sites in our intranet.

 

eg. site.domain.local.

 

I am using the integrated VPN Cisco client. I can access the Sites using the IP address.

 

I have tested it with Safari, Chrome and Skyfire. With the Scany - network scanner I cannot lookup the hostname using the full DNS suffix as stated above.

 

I have also tested with different iPhone and iPads. IOS 7 is still working fine.

 

Anybody else having these problems? I know with IOS 6 there was the same problem and it was solved with the next update.

Posted on Sep 23, 2014 6:52 AM

Close

Q: cannot access .local domain/intranet site when connected to the VPN after the IOS 8 update.

  • All replies
  • Helpful answers

first Previous Page 3 of 7 last Next
  • by Pete boston,

    Pete boston Pete boston Oct 10, 2014 6:30 AM in response to shiggins80
    Level 1 (20 points)
    Oct 10, 2014 6:30 AM in response to shiggins80

    Did you confirm your DNS servers have SOA configured for .local, not just domain.local?

  • by clemensg,

    clemensg clemensg Oct 10, 2014 6:45 AM in response to Pete boston
    Level 1 (0 points)
    Oct 10, 2014 6:45 AM in response to Pete boston

    Pete boston: Thank you very much!

     

    I can confirm that creating a SOA record solved the problem.

     

    But should Apple be doing this? What's the problem with asking the DNS server about .local domains too, even if no SOA record was set..? Why the sudden change? And why did they already try this several times and always reverted to the old behavior?

     

    Anyway. Thanks to Pete boston, my setup is working again!

     

    Update: Btw. I only configured SOA for domain.local and everything works fine now. Should I nevertheless add a SOA entry for local. ?

  • by Pete boston,

    Pete boston Pete boston Oct 10, 2014 6:55 AM in response to clemensg
    Level 1 (20 points)
    Oct 10, 2014 6:55 AM in response to clemensg

    I don't think there is anything wrong with them enforcing correct DNS behavior. Unfortunately I don't think the change was documented anywhere. It appears they have been talking about this for OS X for years:

    Mac OS X v10.4, 10.5, 10.6: How to look up ".local" hostnames via both Bonjour and standard DNS

  • by Pete boston,

    Pete boston Pete boston Oct 10, 2014 6:56 AM in response to clemensg
    Level 1 (20 points)
    Oct 10, 2014 6:56 AM in response to clemensg

    Good question, I thought you also needed to have SOA configured for .local, not just domain.local for a correct configuration.

  • by shiggins80,

    shiggins80 shiggins80 Oct 10, 2014 7:16 AM in response to Pete boston
    Level 1 (0 points)
    Oct 10, 2014 7:16 AM in response to Pete boston

    I'm glad you guys have your solution. I must be missing something. When I go to the properties of my zone and click on the SOA tab, the settings are configured. Is there something else that needs to be done?

  • by shiggins80,

    shiggins80 shiggins80 Oct 10, 2014 7:34 AM in response to shiggins80
    Level 1 (0 points)
    Oct 10, 2014 7:34 AM in response to shiggins80

    Pete, seems as though I didn't wait long enough. It is working now. Thank you. Just to reiterate for anyone else I did in fact need to create SOA's for the .local not just the domain.local. Thank you all for your help.

  • by Philcanuck,

    Philcanuck Philcanuck Oct 10, 2014 7:46 AM in response to Pete boston
    Level 1 (0 points)
    Oct 10, 2014 7:46 AM in response to Pete boston

    Huge, huge, huge thanks to Pete.  I was not looking forward to having to haul my laptop around with me at my next conference.

  • by davidenco,

    davidenco davidenco Oct 10, 2014 4:27 PM in response to Pete boston
    Level 1 (0 points)
    Oct 10, 2014 4:27 PM in response to Pete boston

    I have SOA records setup on all our domains by default in SBS 2008 and still cannot resolve any DNS names via VPN on any iOS 8 device.

     

    Don't see why infrastructure changes should be made in order to support Apple's crap programming. It's clearly a bug that needs resolving by Apple. Local domains resolved perfectly up until iOS 8. Something's changed; but why? Haven't Apple heard of the term... "if it's not broken, don't fix it"...?

     

    That said, if Apple meant to change the way that DNS works in iOS 8 with local domains, why haven't they announced the change prior to releasing iOS 8, advising customers to ensure an SOA record exists before upgrading to iOS 8?

  • by adrenaln,

    adrenaln adrenaln Oct 13, 2014 6:45 PM in response to Pete boston
    Level 1 (0 points)
    Oct 13, 2014 6:45 PM in response to Pete boston

    Massive thumbs up to Pete Boston!! To think I even had some DNS traces showing the IOS device asking for the .local SOA record too, I didn't even notice....

     

    Thank you!

  • by DanielMer,

    DanielMer DanielMer Oct 15, 2014 6:32 AM in response to d3nnis.c
    Level 1 (0 points)
    Oct 15, 2014 6:32 AM in response to d3nnis.c

    Hi, have the same problem. We are running MS DNS and have the SOA record present. But we still can't lookup domain.local.

    Any one else have this problem and have a solution?

  • by Philcanuck,

    Philcanuck Philcanuck Oct 15, 2014 7:56 AM in response to DanielMer
    Level 1 (0 points)
    Oct 15, 2014 7:56 AM in response to DanielMer

    When you create a forward lookup zone in Windows it automatically creates an SOA record for that zone.  The issue here is that in addition to the 'mydomain.local' zone, you need to set up a 'local' zone as well. 

  • by StamfordRob,

    StamfordRob StamfordRob Oct 16, 2014 11:23 AM in response to Pete boston
    Level 1 (0 points)
    Oct 16, 2014 11:23 AM in response to Pete boston

    All.  Our domain is currently set up as my.domain.local and we set setup a forward zone called local and Windows created the SOA and we still cannot connect to local.  NSLOOKUP pulls response to domain.local bot not .local.   What settings do you have or other steps that I may be missing for this setup...r

  • by Philcanuck,

    Philcanuck Philcanuck Oct 16, 2014 12:52 PM in response to StamfordRob
    Level 1 (0 points)
    Oct 16, 2014 12:52 PM in response to StamfordRob

    I didn't do anything beyond creating the zone.  Has it propagated to all of your DNS servers?  Maybe the iPad was querying one that did not have a copy of the zone yet.

  • by StamfordRob,

    StamfordRob StamfordRob Oct 17, 2014 8:19 AM in response to Philcanuck
    Level 1 (0 points)
    Oct 17, 2014 8:19 AM in response to Philcanuck

    Yes.  We added to the zone to DNS and saw that it replicated to the DNS servers that we were using.

     

    Note.. I am using an IOS 8  iPhone on our .local, not an iPad.  The DNS that we added the zone to and another that it replicated to was in the wifi network settings. (cellular disabled for this test).

  • by davidenco,

    davidenco davidenco Oct 17, 2014 8:22 AM in response to StamfordRob
    Level 1 (0 points)
    Oct 17, 2014 8:22 AM in response to StamfordRob

    Tried adding a zone called "local" to our Windows DNS server. Makes no difference.

     

    Apple, make a useful change to iOS please and fix THIS issue! I'm not interested in curves or linear effects; issues like this should take priority.

first Previous Page 3 of 7 last Next