Problem browsing internal and external websites when connected to wireless connection via Cisco VPN

Posted on 2007-07-25
Last Modified: 2013-11-09
Hi All,

I am having problem browsing internal and external websites when my laptop is connected to my university wireless connection via Cisco VPN ( I cannot  browse both internal and external sites by name or by IP. The laptop has a valid DHCP assigned IP, however, when doing nslookup it just give me DNS request timed out.

This laptop was used to connect to a different wireless network when I was in another college and I have removed those connections from Network Connections within Control panel, but still no luck.

Any help is appreciated.

Question by:warren_z2007
    LVL 32

    Accepted Solution

    Sometimes when connected to VPN, you might not be able to access internet/local resources as the VPN adapter tries to route all the traffic over the VPN and hence you loose local connectivity.

    Can you check if the VPN tunnel you have created is using your VPN virtual adapter for all  traffic, if so then all your packets are indeed going over the VPN adapter.

    Do a simple test, issue command:
    route print
    before you establish your VPN tunnel; now after your VPN tunnel comes up issue above command again.
    Check the metric value and gateway/interface which are shown for Network Destination with Netmask

    If this is the case you can request the firewall administrator to set up VPN for you where only the tunnel traffic is routed over the VPN tunnel [split tunneling].

    Expert Comment


     The test in your post regarding the routes before and after connecting tot he vpn lets me know this may be the problem my users are a having. The question i have is.. is it possible to enable these settings on the client? or on a per user basis? The cisco box was setup by a now defunct consulting company and I am in technical deep water trying to poke my way around this unit to enable split tunneling.

    LVL 32

    Expert Comment

    What is the VPN server you are using, is it Cisco PIX, ASA, router...

    Can you post the sanitized config of the device [remove passwords, shared keys etc. and any one octet of the IP addresses] and route prints which you get on the client.

    Thank you.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    New My Cloud Pro Series - organize everything!

    With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

    I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
    I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now