Solved

Cannot browse internet when VPN is active

Posted on 2006-12-01
10
1,003 Views
Last Modified: 2010-08-05
Remote users (Windows XP) cannot run VPN session and browse the internet simultaneously. When VPN connection is activated IE doesnot browse. Once VPN is disconnected browsing is possible.
0
Comment
Question by:nhftech
  • 2
  • 2
  • 2
  • +4
10 Comments
 
LVL 9

Expert Comment

by:JamesTX10
ID: 18054512
go to the properties of your VPN connection
networking tab
properties of TCP/IP
advanced
Check box use default gateway
0
 
LVL 13

Expert Comment

by:mrroonie
ID: 18054591
you mean UN-check the default gateway!
0
 
LVL 9

Expert Comment

by:JamesTX10
ID: 18054730
> you mean UN-check the default gateway!

Right. By default it is checked. By checking it again it will then be unchecked. Sorry I did not make that more clear.

JamesTX10
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 5

Accepted Solution

by:
WGhen earned 125 total points
ID: 18054734
Hi,
Many VPN clients have an option to allow local lan access.  By default, it may be set to not allow local access.
Some companies will pre-configure their clients to disallow local lan access considering it a security risk to have a PC that they are not absolutely sure is protected by a firewall, virus protection etc, browsing the internet whilst connected to the old corporate net.  If so, you probably can't change it.

WGhen
0
 
LVL 4

Expert Comment

by:pakitloss
ID: 18054798
Yes, uncheck...... the problem is a VPN like a Cisco PIX can not send traffic out the same interface it came in on.
0
 
LVL 4

Expert Comment

by:Trilotech
ID: 18054905
It all comes down to whether you want them to be able to access the internet through their own connection seperate from the VPN traffic or if you want to route the internet traffic THROUGH the vpn connection.

By default, when you create a VPN connection, your VPN connection is set up as your default gateway when it is connected unchecking the default gateway in your VPN settings, as JamesTX10 said, will keep your original default gateway (local modem dsl/cable). This means that only traffic bound for the subnet on which your VPN is a part of will go there and all other traffic will go to you normal internet connection.

This can be good or bad. If they need access to other things across the VPN that gets routed within your office, you will have a problem as all traffic will try and route out your local default gateway.
0
 
LVL 5

Expert Comment

by:WGhen
ID: 18054946
>>> the problem is a VPN like a Cisco PIX can not send traffic out the same interface it came in on

Right, but it wouldn't have to.  The home PC goes directly to the internet for internet destinations and thru the tunnel for VPN access to corporate network.  Whether or not that is allowed is determined by the PIX admin by enabling split-tunnelling or not.  WGhen
0
 
LVL 3

Expert Comment

by:MarkWYnne
ID: 18055018
It is definately best that they get internet access from the office network. Check for issues at that point, when accessing the VPN and successfully connected to the office network, check the internal addresses they are getting from network when connected to VPN. Make sure they can contact the proxy when conected to the office network.
0
 

Author Comment

by:nhftech
ID: 18055399
Thanks for the reponses, I have unchecked the default gateway option as suggested and it didn't work. Will look at the router options later when users are off.
0
 
LVL 4

Expert Comment

by:pakitloss
ID: 18055698
Also what I do is to add the machines I want to access in the host file under %WINDIR%/system32/drivers/etc/hosts so that traffic is directed down the VPN and never tries to go out your cable/dsl gateway. This is good for when you have a multihomed server that resolves on the outside or reaching your exchange server.
0

Featured Post

Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Ping configured interface on Sonicwall 16 60
Cisco 5508 WLC software upgrade 2 71
Manage ASA using outside IP 14 62
Receiving wifi on an underground station 22 95
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

861 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question