Solved

VPN User Having Difficulties Accessing Website, While on VPN

Posted on 2006-06-15
13
331 Views
Last Modified: 2010-03-19
we have a person at our company who connects to our network on a daily basis with VPN.  Once he is connected via VPN, he has problems accessing certain websites.  As soon as he disconnects from VPN, he can again access those websites.  It's almost like his computer doesn't know which road to take, 1. accessing the net via his own personal broadband connection, or 2. via VPN.

Does anyone have any clue on how to force his web browswer to use his broadband connection to access internet websites?

Thanks in advance,

T.J.
0
Comment
Question by:buckstaff
  • 5
  • 4
  • 2
  • +2
13 Comments
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16914701
what kind of VPN is it?  and what does his routing table look like route print when he connects to the VPN?

Thanks
Scott
0
 

Author Comment

by:buckstaff
ID: 16914926
he connects to our Windows Domain server via VPN.  Not sure what you are asking for when you say "routing table"
0
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16914952
what type of VPN client does he use MS client PPTP???

When he logs in have him pull up a cmd prompt dos window and do a route print. Post that and tell me what you see.

Thanks
Scott
0
 

Author Comment

by:buckstaff
ID: 16915036
We use PPTP sorry had a brain fart there.  I will get the route print asap thanks

TJ


0
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16915058
I would bet money then it is setting the default gateway as the PPTP server I have seen that time and time again.  Does he have specific websites that he goes to or are they all over the place?

Thanks
Scott
0
 

Author Comment

by:buckstaff
ID: 16915115
he has specific websites he has to go to while he's on VPN, mainly our .NET site which is what he is working on to make sure the changes he makes are working.  He likes to occasionaly go to other sites though too.  How can I stop it from setting the default gateway as the PPTP server?
0
How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16915145
one way is host files one of the big problems is DNS ... I host everything myself at home so when I would connect with a PPTP address I could not connect to anything at my home network because of the host names being resolved.  I had to add a lot of host entries and some static routes to get around what I needed easiest thing I found was using a laptop and a desktop one connected via PPTP the other not.  But without those resources I know of little you can do to force PPTP's behavior to change.

Thanks
Scott
0
 

Author Comment

by:buckstaff
ID: 16915211
there has to be a way around this.  Tons of people connect with VPN.
0
 
LVL 12

Expert Comment

by:Scotty_cisco
ID: 16915305
there are many clients that use split tunneling because of this....Cisco Checkpoint.... that is how many places are getting around it.

Thanks
Scott
0
 
LVL 10

Accepted Solution

by:
naveedb earned 500 total points
ID: 16915336
0
 
LVL 10

Expert Comment

by:bbrunning
ID: 16916484
Open the connection dial in box for the VPN, click properties, click the networking tab.

double click TCP/IP, then advanced. Uncheck the box that says use default gateway on remote network
0
 
LVL 10

Expert Comment

by:bbrunning
ID: 16916488
naveedb,

you beat me too it, just read your link. heh =þ
0
 
LVL 44

Expert Comment

by:scrathcyboy
ID: 16917870
The principle is very simple -- a VPN is a secure channel -- browsing the web is an insecure channel.  If you allow browsing of insecure websites WHILE you are connected to a secure VPN, the rogue sites now have a hackable route to get into your corporate network.  Therefore, browsing of insecure websites while you are connected to a secure VN is a fundamental violation of the sandbox model of browsers.
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now