In new features listed in ASA release 8.4.2 at
http://www.cisco.com/en/US/docs/security/asa/asa84/release/notes/asarn84.html,
I see "Split Tunnel DNS policy for AnyConnect" which might be of interest to us. In the description field , it says " It instructs the AnyConnect client to resolve all DNS addresses through the VPN tunnel. If DNS resolution fails, the address remains unresolved and the AnyConnect client does not try to resolve the address through public DNS servers. "
Does it mean that all DNS queries (internal and external URLs) will be resolved using our internal name servers? We have split tunneling configured.
Thanks,
Kashish