Configure ISA 2006 to force client to flushdns upon VPN connection?

We are having a strange issue that appears to be caused with our split-dns setup. When users connect to the ISA VPN, they maintain the old address in local cache, at least for a bit. This is causing mail connection issues, since that IP uses private internally, and public externally.

I thought when VPN clients connect to ISA they automatically flush the local dns cache, but this issue is apparently highlighting that not to be the case. Is there anything I can check to determine if it is working, or if not, to force a client to simply run a script to do that? I've never forced any scripts over or after an ISA VPN connection so if that's the case I need details on how that is done.

Environment details:
ISA 2006 via Server 2003
Connecting clients are Windows XP
VPN type is PPTP, NO split-tunneling, all traffic through the tunnel
Mail server type is Exchange 2010 (recently changed from 2007)
DNS hosted on Server 2008, split internally (private addressing) versus externally (public addressing hosted on different servers)
LVL 3
skpruettAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Keith AlabasterEnterprise ArchitectCommented:
I'm not understanding why you would need to. If the VPN has been created then users would still see the internal IP addresses as valid - can you explain further?
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
skpruettAuthor Commented:
Keith I'm going to award points to you, but it turns out this was not an ISA issue, rather it's a problem with Exchange 2010 and we are pursuing it that way instead. ISA continues to work fine to other hosts with split dns-resolution.

Thank you anyway, sir.
0
skpruettAuthor Commented:
Exchange 2010 appears to have some issues remotely that are happening due to other factors.
0
Keith AlabasterEnterprise ArchitectCommented:
More than welcome - if you need to come back to this one, just post.

Keith
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.