Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
421
Views
0
Helpful
2
Replies

Allowing VPN Client access to internet without split tunneling

techiegrl
Level 1
Level 1

‎07-29-2008 12:11 PM

Hi, I'm trying to setup my pix515E ver. 8.0 to allow access to internet without using split tunnel. I am able to get connected, but unable to do anything else. Any help will be appreciated. I did try the vpn on a stick, but no luck. Also, tried some of the other fixes that worked for others. Config attached.

Thanks in Advance

Labels:
Preview file
7 KB
0 Helpful
2 Replies 2

acomiskey
Level 10
Level 10

‎07-29-2008 12:26 PM

Is the only problem the vpn on a stick, or the vpn is not working at all?

You don't need the outside access list for the vpn traffic since you most likely have sysopt connection permit-vpn, which is enabled by default.

Hairpinning configuration looks ok.

Are vpn clients getting a dns server address?

group-policy DCPDS_SOA attributes

dns-server none

0 Helpful

techiegrl
Level 1
Level 1
In response to acomiskey

‎07-29-2008 12:34 PM

Yes, the vpn clients are getting through and getting the test banner, but for some reason when I add the DNS that we use for outside it does not work. THanks.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents