[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


VPN without split tunneling...Is internet encrypted?

Posted on 2009-02-14
Medium Priority
Last Modified: 2012-05-06
I have a Cisco 871W (all in one device) and I was having a real hard time getting the VPN setup so I could browse the internet without split tunneling... The problem ended up being I needed an entry in the NAT so the intenet would be directed to the VPN address pool...
Does anybody know if this method encrypts internet traffic to my VPN client or is it just redirecting to my client without encryption???
Question by:flyinace2

Expert Comment

ID: 23642891
The internet traffic will be encrypted in transmission as other VPN traffic.

Expert Comment

ID: 23643011
If you setup the VPN to use full tunnel then all traffic leaving you PC would be encrypted and sent to your router where it is decrypted and routed/Nat to the Internet. The process is then reveresed for the return traffic.
LVL 15

Accepted Solution

bignewf earned 2000 total points
ID: 23643636
In split tunneling, all traffic from vpn client to vpn router/server is encrypted.
So if the vpn client wants to browse google.com over the Internet, the packets are encrypted, sent to the router.The router decrypts them, looks at the routign table, and forwards the packets to the next hop IP address in clear-text.
These steps are reversed when traffic returns from the internet webservers to the vpnclient.

Advantages of split-tunneling - it allows the connected cpn client connectivity to both secure networks and normal un-secured traffic while connected. The disadvantage is that the client is putting the remote connected network at risk because they are bypassing secure gateways that might normally be found on the remote network's infrastructure, making it accessible through the non-secured public network

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Trying to figure out group policy inheritance and which settings apply where can be a chore.  Here's a very simple summary I've written which might help.  Keep in mind, this is just a high-level conceptual overview where I try to avoid getting bogge…
Let’s list some of the technologies that enable smooth teleworking. 
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question