01-26-2011 08:30 AM
I have a ASA 5520 that does VPN.
The ASA has a pool of ip addresses that it gives to the client when they connect.
I also specify which DNS servers to use.
Is there a way to force the client to register their IP's in the DNS servers that they are configured to use?
01-27-2011 11:30 PM
Hello Tan,
The way the dhcp works for VPN is not the regular way where we send a dhcp request with the client mac and it sends a dhcp reply with the ip and then registers the ip with the mac on the dhcp server. In this case the Asa acts as a dhcp proxy and hence it is not possible to register the Mac address of the vpnclient with the ip assigned since the Mac address of the VPN client can never be sent as a part of the IPSec exchanges.
Sent from Cisco Technical Support iPhone App
01-28-2011 04:28 PM
If that is so, then how come the IP's get registered when the client checks the box "register this adapter's IP in DNS"?
thanks!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide