Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3195
Views
0
Helpful
2
Replies

VPN CLient DNS not resolving

dbuckley77
Level 1
Level 1

‎12-20-2016 08:36 AM

We have a remote access VPN setup and when we use the cisco anyconnect vpn client it is unable to use the local DNS that we specified in the vpn group policy. 

I have double checked and we have the dns servers and the default domain set correctly in the group policy.  We can ping the local IP but we cannot resolve DNS for local resources with either the base hostname or fqdn.

When I run an ipconfig /all I only see IPV6 and no IPV4 listed for DNS servers on the vpn adapter.

Thoughts?

Labels:
0 Helpful
2 Replies 2

Georg Pauwen
VIP
VIP

‎12-21-2016 12:39 AM

Hello,

what does your group policy look like ? It should be something like the one posted below.

group-policy DfltGrpPolicy attributes
dns-server value 10.10.1.100 10.20.20.200
vpn-idle-timeout 240
vpn-session-timeout 720
vpn-tunnel-protocol ikev1 ikev2 ssl-client
ipsec-udp enable
ipsec-udp-port 36876
default-domain value my.company.com
split-tunnel-all-dns enable
webvpn
anyconnect mtu 1200

Which AnyConnect and ASA versions are you using ?

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to Georg Pauwen

‎01-02-2017 07:08 AM

It would be good to know if you are using split tunneling, and if so whether the subnet in which the DNS servers are located is included in your split tunnel list.

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents