Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PIX, VPN using PPTP Win2K and DNS - Client Not using remote network gateway

From my understanding I cant use my PIX for VPN Termination and have thise clients use that same PIX to also browse the Internet as the packets cant go out the same port that they came in.

Thats fine, so I turn off the TCP/IP Advanced option to use the Remote network's defaut gateway.

So the Remote client uses its own local interface to connect to the internet.

Though now it also used the local interface's DNS servers to resolve FQDN names.

Is there a way to make it use the VPN DNS Servers when there is a VPN Connection? Or use the VPN DNS Servers for a Specific Domain?

Thanks,

Scott<-

  • Other Security Subjects
2 REPLIES
Cisco Employee

Re: PIX, VPN using PPTP Win2K and DNS - Client Not using remote

I presume you're using the PPTP client in Windows with this. If so, there's no way to do split DNS in PPTP.

If you use the Cisco VPN Client for connection into the PIX, you cna do both split tunnelling (which will allow you to have a VPN connection and browse the Internet at the same time), and you can do split-DNS (which will allow you to query your inside DNS server for particular domains, and query the ISP's DNS for everything else).

New Member

Re: PIX, VPN using PPTP Win2K and DNS - Client Not using remote

You are rignt most of my issues are with the PPTP Clients on windows.

I'm also using the Cisco Client with IPSec. Its much better, but the PIX does not support NAT Transparenct yet so I can't deploy it everywhere yet.

So how do you do set up the Split DNS on the Cisco Client where the users are connecting to a PIX?

Thanks,

Scott<-

112
Views
0
Helpful
2
Replies