When I connect by SSL-VPN with Forticlient and I do a Nslookup I get this DNS time out;
nslookup ad2.office.localDNS request timed out.timeout was 2 seconds.Server: UnKnownAddress: 10.300.2.2
Name: ad2.office.localAddress: 10.300.2.3
When I do it locally it answers without any problems;
nslookup ad2.office.localServer: AD1.office.localAddress: 10.300.2.2
I can from SSL-VPN ping office hosts by DNS name.
Split Tunneling with DNS Split Tunneling is enabled to office.local 10.300.2.2 and 10.300.2.3.
On the SSL client, I have both the office DNS and my local DNS (from ISP).
My SSL-VPN Settings DNS are pointing to my office DNS (10.300.2.2 and 10.300.2.3).
SSL-VPN policy is opened from SSL-VPN to the DNS.
Follow the simple steps here. Hopefully, it will help you.
Solved by turning off DNS slitting.