We have established a VPN tunnel between a SRX and SSG. Clients a in site A and DNS Server is in site B. The DNS server ip is use at the clients in site A. We can ping alle remote hosts and nslookup is working.
We have trouble to ping DNS names and can't resolve any names with IE or ping e.g.! I didn't know why nslookup is working and ping and IE can't resolve any names!
If you can ping the DNS server, I would try to telnet into port 53. If you don't get a connection, it may be a policy. I would also try to run some nslookups using something else. For example (windows):
John Judge JNCIS-SEC, JNCIS-ENT,
If this solves your problem, please mark this post as "Accepted Solution". Kudos are appreciated.