Quick question. Can't find the answer. When a chromebook user brings up a vpn using the anyconnect client to an ASA, I assume the DNS server the client now uses would be the one the ASA specifies, so internal corporate URLs can be resolved.
Can someone confirm this ?
My experience with chromebooks is zero. We only provide the solutions in a supported manner for windows, linux, mac clients.
Logic would tell me that the dns that the ASA would tell the client t ouse would over-ride the local one (how else woul you access internal urls), but I need be certain.
The various forums about Chromebook Anyconnect talk about not being able to resolve internal urls after a certain version, etc.
>Logic would tell me that the dns that the ASA would tell the clientt use would over-ride the local one (how else woul you access internal urls), but I need be certain.
- That will normally be the case since the VPN normally uses a kind of 'virtual network interface' which will use the DNS-servers of the ASA. But if you need to be certain, better to test with a chromeos based test device.
I have an experience of using Anyconnect on a Pixelbook. DNS name resolution turned out to be quite tricky and I would divide it into three parts:
1. ChromeOS itself uses DNS servers provided by Anyconnect and resolves names properly.
2. Linux applications provided by Crostini could not resolve hostnames before ChromeOS 75. Now they can and i did not run into any issues with this so far.
3. Android applications could resolve hostnames before ChromeOS 75 but this seems to be broken with the latest upgrade. Still traffic generated by Android apps is routed through the VPN tunnel, only DNS is impacted.
I basically hope to hear from someone from Cisco on this forum what is the status current status of ChromeOS Anyconnect app and how we can restore its operation.
Note that if you use Android Anyconnect application on a Chromebook, other Android applications will resolve hostnames but Linux applications will not be able to reach anything via the tunnel as of now.