Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

EzVPN with split dns

Hi

I am trying out EzVPN with split dns.

On the IOS EzVPN server, the split-dns is "test.com"

crypto isakmp client configuration group mine

key cisco

dns 10.20.30.40

pool mine

split-dns test.com

split-dns www.win2003.com

I have connected IOS router as a client and brought up the tunnel with network extension mode.

Now, if I try to ping www.test.com from the EzVPN client (IOS router), it sends the DNS request to the internet DNS server (configured with "ip name-server").

But actually, it should have sent the DNS request to "10.20.30.40", the DNS server that was sent by the EzVPN server right?

Also I also don't see the split dns list in "sh crypto ipsec client ezvpn":

client#sh crypto ipsec client ezvpn

Easy VPN Remote Phase: 8

Tunnel name : mine

Inside interface list: Loopback0

Outside interface: FastEthernet0/0

Current State: IPSEC_ACTIVE

Last Event: MTU_CHANGED

DNS Primary: 10.20.30.40

Save Password: Disallowed

Current EzVPN Peer: 172.16.32.43

Sorry, I can't share my configuration. But this is straight forward.

Please share your inputs.

I am adding some more observations.

show ip dns view O/P doesn't have "DNS View ezvpn-internal-view parameters"

show ip dns view-list doesn't have "View-list ezvpn-internal-viewlist"

With regards

Kings

365
Views
0
Helpful
0
Replies
CreatePlease login to create content