VPN is working, except for DNS lookups. Firewall (Cisco ASA 5505) issue?

Posted by macke on Server Fault See other posts from Server Fault or by macke
Published on 2010-09-08T10:11:53Z Indexed on 2012/06/05 16:41 UTC
Read the original article Hit count: 262

Filed under:
|
|
|
|

I've got the following set up:

LAN ->  DHCP / DNS / VPN server (OSX 10.6) -> Cisco ASA 5505 -> WAN

Connecting to the LAN via VPN works fine. I get all the details properly and I can ping any host on the internal network using their IP. However, I can't do any host lookups whatsoever. I've looked through the logs on and found this nugget in the firewall log:

3 Sep 08 2010 10:46:40 305006 10.0.0.197 65371 portmap translation creation failed for udp src inside:myhostname.local/53 dst inside:10.0.0.197/65371

Port 53 is dns services, no? Because of that log entry, I'm thinking that the issue is with the firewall, not the server. Any ideas? Please keep in mind that I have very little knowledge and experience with this kind of firewall and the little experience I do have is with the ASDM GUI console, not the CLI console.

© Server Fault or respective owner

Related posts about dns

Related posts about vpn