I have multiple Mac OS X clients using 4.9.01.180 of the VPN client software. I configured ip address assignment using pools. The ip address correctly gets assigned to the client. The dns server appears to get assigned correctly because when I perform a nslookup it provides me with the correct Internal DNS servers. The response is also very fast. However, some name resolution, especially windows share drive connections, take forever. After watching the logs on the vpn server, I notice these clients querying their service provider's DNS server 1st instead of using the internal dns server. Of course the firewall denies these requests, but why would it request the service provider's dns? Once the client connects to the vpn server using the cisco vpn client shouldn't the client query the internal dns servers 1st as configured in the connection profiles and group polices sections? If not, does anyone have ideas on how to query the internal dns server 1st? Thanks in advance.