NRPT doesn't seem to work

Today we had an internal user update from the 1.11.x version to the upcoming 2.x. After doing so the person could not send traffic to a DNS entry which existed in public DNS. The user had NRPT rules for the service that was supposed to be intercepted, the user could resolve private DNS entries (no matching record in the public space - example: my-service.ziti.com), and requests directed directly at the local DNS server would NOT resolve properly and would return ONLY the public records. This was incredibly abnormal.

The user had an antivirus - AVG - which also clearly uses Wintun (see image below). After uninstalling AVG the AVG Secure VPN Wintun Adapter and AVG Tap Adapter v3 were both removed yet the user still could not connect after installing the latest OpenZiti version.

The issue turned out to be the rogue Wintun Userspace Tunnel at the bottom of the Network Adapters list. Removing this adapter allowed the Ziti Tunnel to show up and things worked as expected

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

NRPT doesn't seem to work

Clone this wiki locally