03-02-2020 08:22 PM
Hi,
using cisco asa 9.x code and the below configuration .
we are using two dns server for internal url resolving and external dns resolving
internal test.local and external test.com
The problem remote users using anyconnect cannot resolve the dns
group-policy Test internal
group-policy Test attributes
wins-server none
dns-server value 192.168.100.1
vpn-tunnel-protocol ikev1 ssl-client
split-tunnel-policy tunnelspecified
split-tunnel-network-list value testsplitacl
default-domain value test.local
address-pools value test
Thanks
03-10-2020 06:50 AM
03-16-2020 02:44 AM - edited 03-16-2020 03:01 AM
Hi,
In tunnel packet capture from the remote client I can see the dns server query response like below "
".... .... ..0. .... = Answer authenticated: Answer/authority portion was not authenticated by the server
And also captured on the firewall
i can see the response in both case with the same error .
So I think the traffic between dns server and the remote client is ok
Below the dns error from capture
Please help
Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide