Solved

Remote access VPN DNS issue

Posted on 2013-01-29
5
232 Views
Last Modified: 2013-04-16
I have remote access configured on ASA and Microsoft ISA firewall. Everything works fine from my home pc, but I can not resolve DNS names.

If I nslookup insidehost.mydomain.com - it resolves the ip

If I nslookup insidehost - returns Server failed error

I believe it has something to do with DNS Server, but dont know what exactly

Thank you
0
Comment
Question by:fgasimzade
  • 2
  • 2
5 Comments
 
LVL 22

Accepted Solution

by:
Matt V earned 500 total points
ID: 38835752
You need to add the dns suffix to your list of domains that the ASA is passing to the VPN client.
0
 
LVL 22

Expert Comment

by:Matt V
ID: 38835766
Configuring Domain Attributes for Tunneling

You can specify a default domain name for tunneled packets or a list of domains to be resolved through the split tunnel. The following sections describe how to set these domains.
 
Defining a Default Domain Name for Tunneled Packets

The security appliance passes the default domain name to the IPsec client to append to DNS queries that omit the domain field. When there are no default domain names, users inherit the default domain name in the default group policy. To specify the default domain name for users of the group policy, enter the default-domain command in group-policy configuration mode. To delete a domain name, enter the no form of this command.
 
hostname(config-group-policy)# default-domain {value domain-name | none}
 
hostname(config-group-policy)# no default-domain [domain-name]
 

The value domain-name parameter identifies the default domain name for the group. To specify that there is no default domain name, enter the none keyword. This command sets a default domain name with a null value, which disallows a default domain name and prevents inheriting a default domain name from a default or specified group policy.
 
To delete all default domain names, enter the no default-domain command without arguments. This command deletes all configured default domain names, including a null list if you created one by entering the default-domain command with the none keyword. The no form allows inheriting a domain name.
 
The following example shows how to set a default domain name of FirstDomain for the group policy named FirstGroup:
 
hostname(config)# group-policy FirstGroup attributes
 
hostname(config-group-policy)# default-domain value FirstDomain
0
 
LVL 18

Author Comment

by:fgasimzade
ID: 38839024
mattvmotas

I have the default-domain name configured, however it does not work..
0
 
LVL 18

Author Comment

by:fgasimzade
ID: 38839030
The other thing is that when I nslookup a correct dns name, like mypc, it returns with Server failed. If I nslookup mypc.mydomain.com - it works. If I nslookup incorrect dns name, say mypc2 - server returns "domain name was not found"
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 38847013
<ignore wrong q>
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
CISCO ASA 5505 double Wan 8 36
Cisco Switch VLAN voice and Data 2 41
Server details to procure Microsoft volume licensing 3 19
Server 2008 Not services listed 23 46
I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
Many of the companies I’ve worked with have embraced cloud solutions due to their desire to “get out of the datacenter business.” The ability to achieve better security and availability, and the speed with which they are able to deploy, is far grea…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question