Allowing Internet Access through SSL VPN (WebVPN)

Answered Question
Jul 29th, 2010
User Badges:

I have my ssl vpn working on my 1821 router. I login and can move through my internal network. However when I am connected I cannot browse Internet web pages....looks like maybe a DNS issue? when I try to ping it looks like it resolves the name just does not pass any traffic.

Correct Answer by Jennifer Halim about 6 years 9 months ago

Are you trying to tunnel all the internet traffic through the SSL VPN as well, or you are doing split tunneling?


For split tunneling, here is the sample config:

http://www.cisco.com/en/US/docs/ios/12_4t/12_4t11/htwebvpn.html#wp1056267


(you would need to add the "svc split include ")


Hope that helps.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
nshoe18 Thu, 07/29/2010 - 07:13
User Badges:

I am actually just trying to allow users who are connected through the ssl tunnel to be able to browse internet websites. Currently internal uses can browse fine and ssl clients can browse internal network with no issues they just cannot get to the internet through the ssl tunnel.

Jennifer Halim Thu, 07/29/2010 - 07:16
User Badges:
  • Cisco Employee,

Easiest is to configure split tunneling as per advised earlier:

For split tunneling, here is the sample config:

http://www.cisco.com/en/US/docs/ios/12_4t/12_4t11/htwebvpn.html#wp1056267


(you would need to add the "svc split include ")


I assume that you already configure NAT exemption for traffic between the internal subnet and the ssl vpn pool subnet.

Rahul Govindan Thu, 07/29/2010 - 07:18
User Badges:
  • Silver, 250 points or more

when you configure split tunneling, only traffic destined to your internal networks will be tunneled through the ssl vpn. All other traffic will be passed through your clients normal internet connection. So when a client is connected to ssl vpn with split tunneling he will be able to get to the internet as he normally does.


Please follow the steps given by halijenn for split tunneling.

nshoe18 Thu, 07/29/2010 - 11:38
User Badges:

That all worked perfectly thank you. Now I just have to get Windows 7 to work with the SSL and all is good.

Actions

This Discussion