Solved: IPSec VPN site-to-site: cannot ping using hostname

lzakariya · ‎08-10-2015

Hi...

I have a site-to-site IPSec VPN connection between the HO and Branch. configuration of Main branch has been attached.

I can ping bothways using IP. But when I ping using the hostname I have problem.

I can ping Branch hosts using their name. But when I ping from Branch to HO using hostname I cannot ping.

My DNS server is located in HO and I am using the same dns server in Branch also.

I have provided the HO ASA configuration.

Please help

Karsten Iwen · ‎08-11-2015

If it's working with FQDNs but not with the hostnames, then you need to configure your PCs to use the same DNS-suffix as is used in the HQ. Or you have to add the suffix to the DNS-search-list.

View solution in original post

Karsten Iwen · ‎08-11-2015

Are your branch-PCs configured to use the central DNS-server? Are they having the correct search-prefix? Have you tried it only with the hostname or also with the fqdn?

I would assume that this is no VPN-Problem but a PC-problem.

lzakariya · ‎08-11-2015

Yes, branch pcs are configured to use my central dns-server.

With FQDN its okay, but if I try hostname only its not pinging

Also nslookup is not working fine.

Karsten Iwen · ‎08-11-2015

If it's working with FQDNs but not with the hostnames, then you need to configure your PCs to use the same DNS-suffix as is used in the HQ. Or you have to add the suffix to the DNS-search-list.

lzakariya · ‎08-11-2015

But what about nslookup?

axarpec01 · ‎08-12-2015

You can also configure a GRE tunnel, so that the broadcast NETBIOS traffic can traverse over IPSec VPN and the DNS server at HO can reply to the same.