My ASA cannot connect to DNS server through IPSec VPN tunnel site-to-site
My network infrastructure has a Headquarter site and several branch offices. All end use ASA firewall. I used IPSec VPN tunnel between remote site and the HQ. Everything is working fine except the DNS configured in ASAs at branch office. the DNS server and my monitoring software is located on HQ site.
From the remote ASAs I cannot resolve FQDN objects, it cannot query to my internal DNS servers. However users from remote sites can do as normal.
In addition, I cannot find where to configure the source interface of DNS, SNMP traffic generated locally from ASA. I think that the problem is I cannot get the traffic generated by ASA to go through VPN tunnel.
How can I resolve this problem, please advise me! If is there any thread which have the same problem and resolved, please give me a link.
Threat Response Basics
What is Threat Response and how can it help my organization?
What is the cost of Threat Response?
What are the deployment options for Threat Response?
Is Threat Response available outside of the United States?
Gartner has once again named Cisco a Leader in the Magic Quadrant for Network Firewalls. This distinction recognizes Cisco's ingenuity in redefining the firewall as the basis for an integrated security platform.
Find out how Cisco stands out from the comp...
Hi experts,I would like any suggestions on this topology. We are is the middle of replacing our old ASA5520 with the new FirePower. Our current firewall terminate our IPsec tunnels and the GRE is terminated on the first inside router's loopback on the sec...
Hi All, A customer wants to authenticate Anyconnect VPN users from an ASA using the client installed certificate and then with AD. i.e. Is this a corporate device?Would we recommend authenticating the cert on the ASA then passing the AD check to ISE ...
Hello Team, we are getting alert in FMC stating policy deployment failed, we are running on 6.2.0 version and not sure which version is stable version to re mediate this issue, in one event i have seen restart will resolve this issue but is it perman...