Last issue close to this I had was a year back some IPv6 users were having issues so I had to enable "client-bypass-protocol enable" on the group policy. One of the users I uninstalled and reinstalled anyconnect it did not work.
Since this can also cause geolookup issues and I dont even know if it would resolve the issue. I debated tunneling all DNS requests, but seems unfair for only 5 users having a problem. This is because NSLookup does not rely on the operating system (OS) DNS resolver, and therefore, An圜onnect does not force the DNS request via a certain interface. Note: Avoid using NSLookup when you test the name resolution on the client. Doing a packet capture it doesnt look like the traffic even makes it to the DNS server.įunny enough nslookup will work, but I researched that it stated: When they try to ping internal DNS name, using the on prem Microsoft DNS server it just says "Ping request could not find host Please check the name and try again." In the browser it will say they recieved a NXDOMAIN response. (They can ping internal resources by IP only). Basically regular internet resolution works and the tunnel actually still stays active. We have a handful of users who lose their split-dns functionality after they are connected to the VPN for awhile.
I've heard of this issue popping up Pre-COVID but very rarely and a reboot always fixed it. With a Cisco TAC case open actively trying to get it resolved. I've been beating myself trying to figure this issue out for weeks. Rule #6: Homework / Educational Questions must display effort. Rule #3: No BlogSpam / Traffic re-direction. Rule #2: No Certification Brain Dumps / Cheating. r/NetworkingJobs /r/sysadmin /r/ITCareerQuestions /r/CSCareerQuestions /r/ccna /r/juniper /r/jncia /r/ccnp /r/jncis /r/ccdp /r/jncip /r/ccie /r/ccde /r/cisco /r/jncie /r/HomeNetworking /r/TechSupport /r/Network /r/ipv6 /r/networkautomation /r/outages Related IRC Channels Topics that may affect one locale does not contribute enterprise networking discussions.Political posts tend to attract the wrong crowd and overly aggressive vocalization.This subreddit invites redditors from all around the globe to discuss enterprise networking.Show us how you think you should solve those issues, and we will validate or offer enhancement to your initial attempt.Don't ask us what we would buy for a given project./r/itcareerquestions /r/ccna and /r/ccent are all available for early-career discussions.This sub-reddit is dedicated to higher-level, more senior networking topics.
#Cisco anyconnect split tunnel how to
Any post that fails to display a minimal level of effort prior to asking for help is at risk of being Locked or Deleted.Surveys may be approved with the moderators' permission.But harassing members to check out your content will not be tolerated. You may share a URL to a blog that answers questions already in discussion. Directing our members to resources elsewhere is closely monitored.This sub prefers to share knowledge within the sub community.These posts will be deleted without mercy.These topics pollute our industry and devalue the hard work of others.Home Lab hardware discussions, as in "what do I buy for a homelab" are not permitted.Home Lab discussions, as a tool for learning & certifications are welcomed.Home Networks, even complex ones are best discussed elsewhere like /r/homenetworking.We aren't here to troubleshoot your "advanced" video game latency issues.Topics regarding senior-level networking career progression are permitted.This topic has been discussed at length, please use the search feature. Topics asking for information about getting into the networking field will be removed.Networking Career Topics are allowed with following guidelines: No Homework Topics without detailed, and specific questions.Enterprise /Data Center /SP /Business networking related.New Visitors are encouraged to read our wiki.Įnterprise & Business Networking topics such as:Įducational Topics & Questions are allowed with following guidelines: Routers, Switches, Firewalls and other Data Networking infrastructure discussions welcomed.