Cisco AnyConnect Split-DNS resolution not working in Snow Leopard 10.6
I just upgraded my Cisco AnyConnect client on my ASA 5510 to 2.4.0202 hoping that the VPN would work for my users with Mac OS 10.6 Snow Leopard, but it would appear they are having DNS resolution issues. I use the Split-DNS functionality of the ASA/Anyconnect client to only send DNS queries to the across-the-vpn DNS servers for a couple of domain names.
My brief testing has shown that all DNS queries are being sent to the remote hosts local DNS servers rather than sending them to the corporate DNS servers for the Split-DNS domains.
I found Cisco bug ID CSCtc54466 that describes this issue. It describes this issue as being with Mac OS X 10.6 and they claim the issue is with Apples mDNS code. They say it is “likely to be fixed in Mac OS X 10.6.3”.
In the meantime they claim you can “Restart the mDNSResponder service”. I am assuming you would need to restart this service each time you VPN in? I have not yet looked into how to restart that service yet either. I will edit this post once I figure it out.
-Eric