how to enable split tunnel for pptp on MS 2000 using PIX 515E

Unanswered Question
May 7th, 2003
User Badges:

I just configure PIX 515E ,clients can connect to the internal network,

but cannot reach the internet,

how to configure PIX 515E to enable split tunnel

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
yizhar Wed, 05/07/2003 - 11:42
User Badges:


You're using PPTP, and the remote WIN2000PRO is the PPTP client, while the pix is acting as PPTP server. Is this correct?

If so, then the best solution is to transit to Cisco IPSec VPN with split-tunnel.

PPTP does not have this option - you can disable the "use remote network as default gateway" at the client, but this will probably prevent access to your internal network.

There are other possible solutions, like terminating the VPN on an internal server instead of the pix, or using proxy/terminal server..

But the best IMHO is to use Cisco IPSec client, because it can be configured with better security then PPTP, and can solve your split tunnel problem.


sirisak.c Wed, 05/07/2003 - 18:08
User Badges:

Once I have enter site,and customer show me the split tunnel on PPTP

for the other company, so I think it would be exist,but I don't know how

to do...I will meet the customer again this morning,and he will tell me

how to work split tunnel on Win2k without configure default gateway on client.


This Discussion