Solved

Remote access VPN DNS issue

Posted on 2013-01-29
5
235 Views
Last Modified: 2013-04-16
I have remote access configured on ASA and Microsoft ISA firewall. Everything works fine from my home pc, but I can not resolve DNS names.

If I nslookup insidehost.mydomain.com - it resolves the ip

If I nslookup insidehost - returns Server failed error

I believe it has something to do with DNS Server, but dont know what exactly

Thank you
0
Comment
Question by:fgasimzade
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 22

Accepted Solution

by:
Matt V earned 500 total points
ID: 38835752
You need to add the dns suffix to your list of domains that the ASA is passing to the VPN client.
0
 
LVL 22

Expert Comment

by:Matt V
ID: 38835766
Configuring Domain Attributes for Tunneling

You can specify a default domain name for tunneled packets or a list of domains to be resolved through the split tunnel. The following sections describe how to set these domains.
 
Defining a Default Domain Name for Tunneled Packets

The security appliance passes the default domain name to the IPsec client to append to DNS queries that omit the domain field. When there are no default domain names, users inherit the default domain name in the default group policy. To specify the default domain name for users of the group policy, enter the default-domain command in group-policy configuration mode. To delete a domain name, enter the no form of this command.
 
hostname(config-group-policy)# default-domain {value domain-name | none}
 
hostname(config-group-policy)# no default-domain [domain-name]
 

The value domain-name parameter identifies the default domain name for the group. To specify that there is no default domain name, enter the none keyword. This command sets a default domain name with a null value, which disallows a default domain name and prevents inheriting a default domain name from a default or specified group policy.
 
To delete all default domain names, enter the no default-domain command without arguments. This command deletes all configured default domain names, including a null list if you created one by entering the default-domain command with the none keyword. The no form allows inheriting a domain name.
 
The following example shows how to set a default domain name of FirstDomain for the group policy named FirstGroup:
 
hostname(config)# group-policy FirstGroup attributes
 
hostname(config-group-policy)# default-domain value FirstDomain
0
 
LVL 18

Author Comment

by:fgasimzade
ID: 38839024
mattvmotas

I have the default-domain name configured, however it does not work..
0
 
LVL 18

Author Comment

by:fgasimzade
ID: 38839030
The other thing is that when I nslookup a correct dns name, like mypc, it returns with Server failed. If I nslookup mypc.mydomain.com - it works. If I nslookup incorrect dns name, say mypc2 - server returns "domain name was not found"
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 38847013
<ignore wrong q>
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

WARNING:   If you follow the instructions here, you will wipe out your VTP and VLAN configurations.  Make sure you have backed up your switch!!! I recently had some issues with a few low-end Cisco routers (RV325) and I opened a case with Cisco TA…
This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question