Just an update on this for the archives: Turned out to be one of the DNS servers specified in the information pushed by the IPSec/VPN server was not configured to provide recursive look-ups for the address space assigned to users when they connect to the VPN.
Figured it out when moving the DNS server IP addresses around with the SSL/VPN as well. I suppose what threw me off is the fact that Cisco seem to have scenarios where the VPN works, but DNS doesn't. Our Systems Administrators will be fixing the recursive ACL's. Cheers, Mark.
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/