Hi

I am trying out EzVPN with split dns.

On the IOS EzVPN server, the split-dns is "test.com"

crypto isakmp client configuration group mine
key cisco
dns 10.20.30.40
pool mine
split-dns test.com
split-dns www.win2003.com

I have connected IOS router as a client and brought up the tunnel with
network extension mode.

Now, if I try to ping www.test.com from the EzVPN client (IOS router), it
sends the DNS request to the internet DNS server (configured with "ip
name-server").

But actually, it should have sent the DNS request to "10.20.30.40", the DNS
server that was sent by the EzVPN server right?

Also I also don't see the split dns list in "sh crypto ipsec client ezvpn":

client#sh crypto ipsec client ezvpn
Easy VPN Remote Phase: 8

Tunnel name : mine
Inside interface list: Loopback0
Outside interface: FastEthernet0/0
Current State: IPSEC_ACTIVE
Last Event: MTU_CHANGED
DNS Primary: 10.20.30.40
Save Password: Disallowed
Current EzVPN Peer: 172.16.32.43

Sorry, I can't share my configuration. But this is straight forward.
Please share your inputs.


With regards
Kings
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit 
www.ipexpert.com

Reply via email to