Solved: If you are using full

aneesh.at55 · ‎05-21-2017

HI Guyz

Seeks your valuable update regarding Anyconnect full tunnel configuration issue

All my configuration are perfect users are able to connect and all traffics are routed to ASA 5525 except they are unable to browse internet. assume mostly DNS related configuration issue which am not clear as am able to ping public internet IPs .even tried enabling DNS lookup on outside interface but result was negative

followed below link for configuration

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-nex...

Mohammed al Baqari · ‎05-21-2017

If you are using full-tunneling, then you need this command under your group-policy and make sure that your clients can reach DNS server over the tunnel.

disconnect/connect after applying the command

**** please remember to rate useful posts

View solution in original post

Mohammed al Baqari · ‎05-21-2017

Under your group policy configuration, what is your split-dns configuration and split-tunnel-all-dns.

Try to apply these and test.

split-dns none
split-tunnel-all-dns enable

aneesh.at55 · ‎05-21-2017

HI Mohammed

Its not working .But seems if we modify command it can resolve my issue (If theory is correct). Pls help me even am trying from my side

Note: Its Full tunneling not split tunneling.User gateway is my ASA

Thanks

Mohammed al Baqari · ‎05-21-2017

If you are using full-tunneling, then you need this command under your group-policy and make sure that your clients can reach DNS server over the tunnel.

disconnect/connect after applying the command

**** please remember to rate useful posts

aneesh.at55 · ‎05-21-2017

Thanks Mohammed

Its working

AnyConnect Full Tunnel _internet Browsing issue