[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 251
  • Last Modified:

Problem browsing internal and external websites when connected to wireless connection via Cisco VPN

Hi All,

I am having problem browsing internal and external websites when my laptop is connected to my university wireless connection via Cisco VPN ( I cannot  browse both internal and external sites by name or by IP. The laptop has a valid DHCP assigned IP, however, when doing nslookup www.xxxxx.com it just give me DNS request timed out.

This laptop was used to connect to a different wireless network when I was in another college and I have removed those connections from Network Connections within Control panel, but still no luck.

Any help is appreciated.

  • 2
1 Solution
Sometimes when connected to VPN, you might not be able to access internet/local resources as the VPN adapter tries to route all the traffic over the VPN and hence you loose local connectivity.

Can you check if the VPN tunnel you have created is using your VPN virtual adapter for all  traffic, if so then all your packets are indeed going over the VPN adapter.

Do a simple test, issue command:
route print
before you establish your VPN tunnel; now after your VPN tunnel comes up issue above command again.
Check the metric value and gateway/interface which are shown for Network Destination with Netmask

If this is the case you can request the firewall administrator to set up VPN for you where only the tunnel traffic is routed over the VPN tunnel [split tunneling].

 The test in your post regarding the routes before and after connecting tot he vpn lets me know this may be the problem my users are a having. The question i have is.. is it possible to enable these settings on the client? or on a per user basis? The cisco box was setup by a now defunct consulting company and I am in technical deep water trying to poke my way around this unit to enable split tunneling.

What is the VPN server you are using, is it Cisco PIX, ASA, router...

Can you post the sanitized config of the device [remove passwords, shared keys etc. and any one octet of the IP addresses] and route prints which you get on the client.

Thank you.

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now