VPN CLient DNS not resolving

dbuckley77 · ‎12-20-2016

We have a remote access VPN setup and when we use the cisco anyconnect vpn client it is unable to use the local DNS that we specified in the vpn group policy.

I have double checked and we have the dns servers and the default domain set correctly in the group policy. We can ping the local IP but we cannot resolve DNS for local resources with either the base hostname or fqdn.

When I run an ipconfig /all I only see IPV6 and no IPV4 listed for DNS servers on the vpn adapter.

Thoughts?

Georg Pauwen · ‎12-21-2016

Hello,

what does your group policy look like ? It should be something like the one posted below.

group-policy DfltGrpPolicy attributes
dns-server value 10.10.1.100 10.20.20.200
vpn-idle-timeout 240
vpn-session-timeout 720
vpn-tunnel-protocol ikev1 ikev2 ssl-client
ipsec-udp enable
ipsec-udp-port 36876
default-domain value my.company.com
split-tunnel-all-dns enable
webvpn
anyconnect mtu 1200

Which AnyConnect and ASA versions are you using ?

Richard Burts · ‎01-02-2017

It would be good to know if you are using split tunneling, and if so whether the subnet in which the DNS servers are located is included in your split tunnel list.

HTH

Rick

HTH

Rick