Re: VPN kill other internet traffic

dian.it · ‎01-13-2006

When VPN are stablished i cant browse or send mail, only send and receive traffic from vpn network. How can pass traffic trought VPN and pass traffic to other destination too.

mheusinger · ‎01-13-2006

Hello,

what you are asking for sounds like a split tunnel implementation. Have a look at

"Configuring Cisco VPN Client 3.5 and the Cisco Integrated Client to Secure Nonencrypted Traffic While Using Split Tunneling" at

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_configuration_example09186a0080094b02.shtml

It has to be configured on the central VPN device and can not be modified by client settings.

Once you are connected to the vpn device Internet access can be established from the internal network, f.e. with an enterprise internet proxy.

Hope this helps! Please rate all posts.

Regards, Martin

jackko · ‎01-14-2006

split tunneling needs to be configured on the vpn server.

cisco router, pix, asa, and concentrator are all capable to perform split tunneling. further, with pix v7 or asa, it can be configured to redirect the internet traffic.

dian.it · ‎01-16-2006

Can you tell me the structure of command ?

Thanks

jackko · ‎01-16-2006

please advise what sort of device we are discussing here, and then we can provide the commands.

jackko · ‎01-16-2006

please advise what sort of device we are discussing here, and then we can provide the commands.

dian.it · ‎01-16-2006

Cisco PIX 515E

jackko · ‎01-16-2006

e.g.

access-list 120 permit ip 192.168.1.0 255.255.255.0 10.1.1.0 255.255.255.0

vpngroup vpnclient split-tunnel 120

whereas 192.168.1.0 is the pix inside net; and 10.1.1.0 is the vpn client pool.

jackko · ‎01-16-2006

please advise what sort of device we are discussing here, and then we can provide the commands.