Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

DNS resolution on Anyconnect - multiple different internal DNS servers


   We have multiple different internal windows AD domains within our network, that currently do not replicate their DNS zones between them.

  • Is there anyway with an ASA/anyconnect VPN to create a configuration so the ASA inspects the DNS lookups from a user connected via the anyconnect VPN client, and route it to a defined internal DNS server?

For example I have three internal AD domains with a dns server ip of ,, with a dns server ip of, when a user VPN's in and performs a dns lookup for the name the ASA see's it is for and routes the lookup to 1.1.1., however when a user performs a dns lookup for, the asa see's its is fro and routes the DNS lookup to

Any thoughts on alteratives to over come the problem also welcome and/or if anyone can point me to a link that explains the function of "mulitple DNS server groups, which is located in the ASDM interface under Remote Access VPN->DNS (as I have not been able to find a plain english explanation of the function as I am unsure if this does what I am looking for)


  • VPN
Everyone's tags (1)
This widget could not be displayed.