BHHanley
asked on
Internal clients cannot access Internet when VPN client is connected
We have a Windows 2003 Server running ISA Server 2000 with routing and remote access configured to accept VPN connections.
There is no problem connecting to the network with the VPN client except that once connected the clients on the internal side of the network can no longer access the internet.
As a side note, this "lockup" also freezes the ISA server until such time that the VPN client disconnects.
Once the VPN client has disconnected, all functions return to normal.
This is a dual-homed server utilizing static-ip addressing for the VPN clients.
Any help is most appreciated.
There is no problem connecting to the network with the VPN client except that once connected the clients on the internal side of the network can no longer access the internet.
As a side note, this "lockup" also freezes the ISA server until such time that the VPN client disconnects.
Once the VPN client has disconnected, all functions return to normal.
This is a dual-homed server utilizing static-ip addressing for the VPN clients.
Any help is most appreciated.
ASKER
I apologize for the delay in responding. The above article did not resolve my situation.
I have asked for this question to be closed.
I have asked for this question to be closed.
Bhanley - how did you fix it ?
ASKER
See the question.
> See the question.
Sorry - I can't see anywhere how you've resolved this. This information could be of use to others out there... :)
Sorry - I can't see anywhere how you've resolved this. This information could be of use to others out there... :)
ASKER
The solution lies in the fact that the VPN client must access the Internet via the local proxy server (in this case the ISA server). The VPN must setup it's Internet connection as a dial-up rather than a LAN connection even though it is accessing the local network via the LAN. This forces the client to use the ISA servers' Internet connection and not the ISP providers connection that the VPN is using to access the local network to surf the internet.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
The 'use default gateway on remote network' tickbox under TCP/IP / Advanced settings is the box that enables/disables split tunnelling.