communication problem while VPN client connecting through a Pix
I have one VPN Client ver 3.5 connected through a VPN tunnel to PIX 515 firewall at another site through the internet, what's weird, when the VPN tunnel is up, the pc couldn't ping pcs on his local network (just when you bring the VPN tunnel down he can ping them), seems that when the tunnel is up, all the packets are encrypted, we tried to use the split command (but i read that this command is useful only with a Concentrator), is there any way to disable packets going to local devices not to pass through the Tunnel? (having the knowledge that here we can't use an access list to decide wether to go through the tunnel or not, dynamic crypto map is implemented)
Re: communication problem while VPN client connecting through a
If you click the "Options" button, then "Properties," you should be presented with a window with a checkbox for "Allow Local LAN Access."
This is the same screen where you can define how you'd like your VPN traffic to pass firewalls.
Split Tunnel only applies to accessing resources outside of the tunnel (i.e., the Internet). For security reasons, most places would prefer that a client not be concurrently connected to secure (the company) and unsecure (everywhere else beyond the company firewall) resources. Once the client is connected to the company LAN via VPN, the company usually allows access to the Internet through the company's secure connection.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...