|04-25-2012, 04:18 PM||#1|
Join Date: Oct 2011
Cisco VPN - DNS Issues
I've put this off for way too long, and it's really starting to bug me.
I seem to have an issue with the my work VPN. We use the Cisco VPN connection and I've successfully set up a Cisco VPN connection. The problem is, when I connect to the VPN, it appears that it only uses my local DNS server for lookups. For instance, if we had a handful of servers at my remote workplace, 10.0.0.1 and 10.0.0.2. I can't get to them, no matter what, by name, but I can get to them via IP (confirms DNS issue).
When I do a DNS lookup via dig from my osx system, I query it by way of:
It times out (obviously).
When I query from a known internal name server like so:
dig @10.0.0.25 servername01
It returns immediately the server name and IP.
So, I know that the name server is working, so now I blame my OSX system for not handling this correctly.
Now, here's the weird thing - my VPN connection automatically gets assigned two DNS ip addresses, and the primary IP of it is the one from above, which works when I query the DNS system) and my wifi connection still uses my local DNS (192.168.1.254). So, I have internet and I would assume that, if it cannot find something in the 10.x.x.x subnet, it would try the VPN DNS servers. This is not what it does though
So, what I then tried was setting the "Service Order..." in network preferences, and put the Cisco VPN at the top and my wifi one below that one. I even restarted the VPN connection, and still it does not use the remote workplace DNS settings.
The workaround I keep having to do is go into my wifi DNS settings and manually assign the remote DNS servers (primary is set as the one from above - 10.0.0.25). After I hit apply, I can ping and access servers via name.
The additional problem with this is, now my internet goes through my workplace, so when I disconnect from the VPN, I now have to go back and remote the workplace DNS from my wifi adapter to use the default local DNS (192.168.1.254) server - it gets very annoying after doing it for this long.
I know when I used to use Microsoft Windows - I'd connect to the VPN and them make sure "Use default gateway on remote network" was unchecked, and that would allow my to use the internet via my local DNS and everything else (such as accessing remote machines in the workplace) would go through my work DNS.
I've confirmed that this works fine in Windows and Linux (Ubuntu) by default, but in OSX it seems like the "Service Order..." doesn't really do what it's suppose to and it appears that the routing doesn't work the way I would expect.
Anyone have any ideas?
PS - This has been an issue since Snow Leopard and I'm currently running Lion.
|07-03-2012, 09:45 AM||#2|
Join Date: Jul 2012
I created a new location in Network Prefs.
In there I put the remote DNS and the local DNS.
And specified the search domain for the remote site.
For me this works on line and off line.
But I am not using Cisco.............
|cisco, dns, networking, vpn|
|Display Modes||Rate This Thread|