04-28-2016 12:59 AM - edited 03-12-2019 12:40 AM
Hello forum,
My network infrastructure has a Headquarter site and several branch offices. All end use ASA firewall. I used IPSec VPN tunnel between remote site and the HQ. Everything is working fine except the DNS configured in ASAs at branch office. the DNS server and my monitoring software is located on HQ site.
From the remote ASAs I cannot resolve FQDN objects, it cannot query to my internal DNS servers. However users from remote sites can do as normal.
In addition, I cannot find where to configure the source interface of DNS, SNMP traffic generated locally from ASA. I think that the problem is I cannot get the traffic generated by ASA to go through VPN tunnel.
How can I resolve this problem, please advise me! If is there any thread which have the same problem and resolved, please give me a link.
Thanks you,
Solved! Go to Solution.
04-28-2016 03:37 AM
Include the public IP address of the remote ASA (remote from HQ) in the encryption domain and it will work.
04-28-2016 03:37 AM
Include the public IP address of the remote ASA (remote from HQ) in the encryption domain and it will work.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide