Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
514
Views
0
Helpful
2
Replies

AnyConnect 4.x - Resolve hostname to public address while connected via VPN

hypnotoad
Level 3
Level 3

‎08-16-2017 03:27 PM - edited ‎02-21-2020 09:24 PM

Hey all,

I have a hostname that needs to be available both inside and outside our network on the same name.  If a user is outside our network, I need them to resolve the name to a public address even when connected via AnyConnect client.  Is there a way to intercept the DNS query and return the public address?  I'm open to ideas.

Thanks,

Patrick

Labels:
0 Helpful
2 Replies 2

Mohammad Alhyari
Cisco Employee
Cisco Employee

‎08-16-2017 11:37 PM

The only thing i have in my mind is to utilize the DNS inspection on the ASA and drop the query that has that name in the questions section.

Moh,

0 Helpful

Mohammad Alhyari
Cisco Employee
Cisco Employee
In response to Mohammad Alhyari

‎08-16-2017 11:44 PM

You can drop the query when coming from the client pool. Look at this example

https://www.tunnelsup.com/using-just-a-cisco-asa-to-block-specific-websites/

0 Helpful
Customers Also Viewed These Support Documents