• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1395
  • Last Modified:

Cisco VPN Client using wrong DNS server

Hi All,

I am having a strange issue with a number of our Cisco VPN clients.  The VPN clients connect into a Cisco ASA 5510 which is setup to send all traffic for clients via the company network. I.E no split tunnelling!

This works fine for 90% of the clients but strangely the othe 10% are using their local DNS (rather than the company DNS servers) when connected.  Consequently they cannot connect to any company servers etc by name - i.e intranet and mapped drives don't work.

We have tried a number of versions of the VPN client including the latest and are not closer to a solution - does anyone know how to resolve this?!

Many thanks

Rob
0
robclarke41
Asked:
robclarke41
  • 2
  • 2
1 Solution
 
AngloCommented:
WHat OS are they using?  We have had DNS issues with Vista & 7 and have to disable IPv6 on the network interfaces.
0
 
robclarke41Author Commented:
We are using XP so are not having any IPv6 problems
0
 
DIPRAJCommented:
There is a known and old problem within Windows, where it will by default query "local" DNS servers before it queries DNS servers that are on "WAN" (which is what VPN connections appear to be) links.

Refer to : http://support.microsoft.com/?id=311218

You can try using the script here:

http://blogs.technet.com/brucecowper/archive/2005/03/28/403043.aspx

that will change the binding order.  This will cause the DNS queries to go to the DNS servers provide the the DHCP server of for the VPN.  Please note that any unqiue host names resolved by the "local" DNS (192.168.1.5) will NO longer get resolved properly unless they are also defined on 10.21.0.100.


docs from EE
0
 
robclarke41Author Commented:
That was it thanks!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get Certified for a Job in Cybersecurity

Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.  

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now