Question : Cisco VPN client issue

Hi All,

    Ex :   abcdcorp.com -->10.1.1.100-->211.1.100

     10.1.1.100  --> Intranet server IP address
     211.1.1.100  --> Natted IP address of Intranet server.

If we access from Corporate network it resolve as 10.1.1.100 and over the internet it would be as 211.1.1.10.

 Issue is when we connect through VPN it must resolve as 10.1.1.100 but it resolved in the public IP 211.1.1.100, even though it was allowed to access over VPN.

 Real issue comes here if this particular IP access over the internet it will not allowed to access other links as per our Corporate policy.

In Vista alone we have this porblem, we able to connect the Cisco VPN client without any issues. After connecting into the VPN we are not able to resolve intranet sites, even though IPs are allowed to access over the VPN.

Note : By adding host entry it works without any issues. Its possible to make host entry for more than 120+ servers.

Details : Cisco ASA 5510 , 7.2 IOS version, VPN client 5.0x

Kindly share your experience to resolve this issue.

Regards
Nazir


Answer : Cisco VPN client issue

Hi,

Only default group policy give back dns:
group-policy DfltGrpPolicy attributes
 banner none
 wins-server none
 dns-server value 10.8.16.3 10.20.6.3

Others not:
group-policy sage internal
group-policy sage attributes
 split-tunnel-policy tunnelspecified
 split-tunnel-network-list value sage
Random Solutions  
 
programming4us programming4us