Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Cannot connect to internet while VPN to network.

I have a dsl account and when I vpn in to our network using cisco vpn client to vpn 3015 I cannot access the internet anymore locally. I have to use our network internal proxy server. Is there a way to do the vpn tunnel but also use the local DSL internet connection for browsing?

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: Cannot connect to internet while VPN to network.

You need to set up split tunnelling, so that only certain packets are sent across the tunnel, the rest go out in the clear just as normal packets.

In the 3015 create a Network List under Config - Policy Mgmt - Traffic Mgmt - Network List, this list will include your internal networks (traffic you want to be tunnelled). Then go under the Group that the client is connecting to, under the Client Config tab, select Only tunnel networks in the list and select your list in the drop-down box. Reconnect and you're good to go.

Keep in mind split-tunnelling is considered somewhat of a security risk seeing as your PC is now accessable from the Internet AND you have a VPN straight into your internal network. If someone can take over your PC then they have access to everything. You might want to also look into enabling the client firewall stuff as well.

3 REPLIES
Cisco Employee

Re: Cannot connect to internet while VPN to network.

You need to set up split tunnelling, so that only certain packets are sent across the tunnel, the rest go out in the clear just as normal packets.

In the 3015 create a Network List under Config - Policy Mgmt - Traffic Mgmt - Network List, this list will include your internal networks (traffic you want to be tunnelled). Then go under the Group that the client is connecting to, under the Client Config tab, select Only tunnel networks in the list and select your list in the drop-down box. Reconnect and you're good to go.

Keep in mind split-tunnelling is considered somewhat of a security risk seeing as your PC is now accessable from the Internet AND you have a VPN straight into your internal network. If someone can take over your PC then they have access to everything. You might want to also look into enabling the client firewall stuff as well.

New Member

Re: Cannot connect to internet while VPN to network.

Thanks! I have enabled split tunneling and it works. You mentioned enabling the client firewall. HOw do you do this.

Cisco Employee

Re: Cannot connect to internet while VPN to network.

480
Views
0
Helpful
3
Replies
CreatePlease login to create content