Re: OT: vpn questions (stops using my internet connection and starts using the gateways?)

From: P. Thompson (ptfedora_at_majordomo.thedacare.org)
Date: 07/27/04

  • Next message: William W. Austin: "problem with all fedora2 update kernels, scsi, & usb" 
    Date: Mon, 26 Jul 2004 21:50:59 -0500 (CDT)
To: john.wendel@metnet.navy.mil, For users of Fedora Core releases <fedora-list@redhat.com>

    FYI

    Split DNS is defined in the .pcf file for your VPN connection.
    Not sure if Split tunneling is defined only on the concentrator.

    EnableSplitDNS: Determines whether the connection entry is using
    splitDNS, which can direct packets in clear text over the Internet to
    domains served through an external DNS or through an IPSec tunnel to
    domains served by a corporate DNS. This feature is configured on the VPN
    3000 Concentrator and is used in a split-tunneling connection.

    0 = No
    1 = Yes (default)
    Does not appear in GUI
     
    Note You must also enable this feature on the VPN device you are
    connecting to.
     
    On Fri, 23 Jul 2004, John Wendel wrote:

    > On Friday 23 July 2004 02:07 pm, Christopher J. Bottaro wrote:
    > > my system admin says split tunneling should be enabled. now i've been
    > > searching for near half an hour on how to enable split tunneling and split
    > > dns on the cisco linux vpn client. any ideas?
    > >
    > > thanks.
    >
    >
    > As far as I know, the Cisco vpn client doesn't support split tunneling. I
    > think there is another open source client "vpnc" and "kvnpc" that has been
    > mentioned on this list that does support split tunneling, but I've never used
    > it.
    >
    > Regards,
    >
    > John Wendel
    >
    >
    > 

    -- 
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
  • Next message: William W. Austin: "problem with all fedora2 update kernels, scsi, & usb"

    Relevant Pages

    • Re: VPN versus Terminal Server for remote workers
      ... The logic behind it is that if split tunneling is implemented an infected ... PC establishes a connection to your network and the malware calls home ... By default and intention 'split tunneling' of VPN connections is not ... as far as using Term Server, the question really is: ...
      (microsoft.public.windows.server.sbs)
    • Re: VPN Connection Problems!
      ... If you check the VPN connectoid on your remote computer: ... ISP connection while you are still connected to the VPN. ... this is called "split tunneling" and can be a security risk. ... Use default gateway on remote network ...
      (microsoft.public.windows.server.sbs)
    • Re: PPTP VPN Startup Connect
      ... unless you use split tunneling, which is considered a security risk. ... Normally when VPN is up, all other internet connectivity is down. ... connection then your internet will still appear to work though all your ...
      (comp.dcom.vpn)
    • Re: Split Tunneling in the Windows VPN Client???
      ... Are you sure that this is what is causing your DNS problems? ... > including local but this is how Cisco's implements their VPN client ... Home user with home network with multiple computers ... > this scenario but this is why you do not implement Split Tunneling ...
      (microsoft.public.windows.server.networking)
    • RE: [fw-wiz] PIX split tunneling
      ... Split tunneling is an excellent option for saving bandwidth and SA's on your ... To use a VPN the user would need access to the internet ( ... on a public network then if they change the config then they change it. ... If your users are inside the PIX then I don't understand the question. ...
      (Firewall-Wizards)
    Loading