03-23-2019 10:49 AM - edited 02-21-2020 09:36 PM
I have a work computer running windows 10 and Cisco Anyconnect 4.4. The VPN client is connecting and working fine, however every single DNS request looks like it's being duplicated on my local network. But it is trying to resolve private network names/address' and it is obviously failing every time at my gateway. My router is then recording these in the log. There are literally thousands of requests per day ( I work from home) being thrown at my gateway and failing resolution. How can I stop Cisco Anyconnect from making local DNS inquiries and only using the VPN adapter? Please keep in mind that I'm not a network engineer and our support for my workplace are....even worse than me. Any help would be appreciated to stop this.
03-23-2019 12:55 PM - edited 03-23-2019 12:56 PM
Look at below reference document, make nessary changes as suggested :
03-23-2019 01:14 PM
03-23-2019 01:30 PM
Your symptoms suggest that they have set up AnyConnect to use split tunneling (where your traffic to work HQ goes through the vpn and all other traffic just goes out to the Internet). Can you confirm with your support folks that this is the case? And if it is can you ask them to include the DNS traffic as traffic to use the vpn?
HTH
Rick
03-23-2019 01:35 PM
03-23-2019 01:49 PM
Actually I thought that asking them if AnyConnect is set up with split tunneling was pretty simple. And if they have any clue at all about Remote Access VPN they should know if they are specifying split tunneling. But there is a way you can probably help answer this. When you are running AnyConnect you can use the icon to get information about the AnyConnect environment. Look in the information for the section about routing through the vpn. If there is a single entry for 0.0.0.0 then it is not split tunneling and all traffic goes through the vpn. If there are only some routes listed then it would be split tunneling. Can you post what you see in that output?
HTH
Rick
03-23-2019 02:57 PM
We need to know as suggested @Richard Burts is this split tunnel or all the traffic go to your connected VPN and then internet ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide