Cisco Support Community
Community Member

ASA site to site tunnel not apearing to pass DNS Info

                   Hello - We have two sites with ASA 5505s that connects back to corprate building via a site to site tunnel.  Up until today they were working fine. (over a year)  Today then do not seem to be resolving DNS to any servers.  ICMP works fine (ping, traceroute).  We can telnet using port 53 to any DNS server from the remote site.  We have many sites using the same configuration that continue to work fine. I used the packet capture feature on the ASA and DNS seems to be passing.  The only strange thing I see on the trace is "DNS: C ID=58602 OP=QUERY A " is our Domain name but I have not idea what "wpad" is.    Any help is appreciated. Thanks -Frank

Everyone's tags (1)
Hall of Fame Super Silver

ASA site to site tunnel not apearing to pass DNS Info

WPAD is Web Proxy AutoDiscovery protocol. Reference.

We would see this most commonly when the remote site's DHCP server was set to provide clients with a WPAD URL. When that is done, it will take precedence over the client's DNS configuration and possibly cause "regular" DNS lookups to fail.

CreatePlease to create content