Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
349
Views
0
Helpful
3
Replies

Hardware Client 3002 split tunnel

stefan.eck
Level 1
Level 1

‎12-09-2002 03:29 AM - edited ‎03-09-2019 01:19 AM

Hi,

I'm currently testing the Hardware client 3002 with a VPN 3030 concentrator. The hardware client is directly connected to DSL and is using PPPoE. NEM (Network extension Mode) and hardware client authentication is configured. Split tunnel is allowed; Only interesting traffic to HQ should be encrypted.

Opening a connection to the HQ and to the Internet works fine.

The problem is now to get access to the Internet while the VPN tunnel is down. This does not work. That means that Internet access is only possible when the VPN tunnel is established. Is it really a feature or a misconfiguration ? Software is uptodate.

Any Ideas ?

Thanks

Labels:
0 Helpful
3 Replies 3

ajagadee
Cisco Employee
Cisco Employee

‎12-09-2002 10:57 AM

Hi,

This is a feature and not a misconfiguration.

Regards,

Arul

0 Helpful

travis-dennis_2
Level 7
Level 7
In response to ajagadee

‎12-09-2002 11:25 AM

Not to mention the use of split tunneling is considered a security risk.

0 Helpful

stefan.eck
Level 1
Level 1
In response to ajagadee

‎12-09-2002 11:15 PM

Hi,

It's a pity. This makes not easier to troubleshoot this device for a standard user.

I know split tunneling might be a security issue. Nevertheless it is a strategic / business decision.

But it works perfect with the software client. I thought i can implement the same behavior with the hw client.

Thanks for help

Stefan

0 Helpful
Customers Also Viewed These Support Documents