My issue is kinda simple in logic but it's a little bit hard in implementation.
My scenario as follows:
I've a Cisco PIX 525 and defined with 4 interfaces Inside,Outsie,VPN and DMZ. I located my web and mail servers in the DMZ subnet which is (10.111.0.0/24) and i located my VPN router in the VPN subnet which is (10.11.0.0/24). Also,i created many static routes for this VPN and all are successfull but i only will state just one route in the configuration to you and i can now ping the remote peers. In addition,i created a static nat for the servers to access the VPN subnet. Voila! the servers now can ping the remote peers too and remote desktop on specific remote hosts for management purposes. Here it comes the hard part that is my mail server also is a DNS server and i have both A host records created to point to both mail and web servers.
However the remote hosts can not resolve their names, they can only resolve their ip addresses. i am pretty sure that i created an access list that is applied on the VPN interface which permits UDP dns port. the following are in details configuration:
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :