Solved

User cannot access internet when VPN is connected but other remote users are fine

Posted on 2011-09-11
10
415 Views
Last Modified: 2012-05-12
I am the new general purpose IT person at a small business and am having issues with one user cannot access the internet when they connect by vpn at home, but they are able to access the office shares/drives, etc when vpn'ed in.

Other users and me including are not having this issue or have ever experienced this issue. I think that it may be because of their local intranet settings conflicting.  Here is their local internet settings when connected by vpn.

 Net setings
Is the same first two octets conflicting, because all other users have different local home ip subnets, which leads me to think that this is the culprint as all other things are the same...??  I am not a network expert, so bare with me please.  

We are using a fortigate VPN on the business side and forticlient on client side.  

I have seen the workaround where you are supposed to uncheck the "Use default gateway on remote network" but this is always enabled even if you uncheck it as it is set somewhere on fortigate.  I'm trying to figure out where and how, not experienced with the fortigate.  

Any help would be muchhhhh appreciated....
0
Comment
Question by:janlani19
10 Comments
 
LVL 21

Expert Comment

by:Papertrip
ID: 36520483
Can you paste the routing table while connected to the VPN please.

netstat -rn

Open in new window


0
 
LVL 10

Expert Comment

by:SuperTaco
ID: 36520496
is the fortigate client set up for split-tunnel?
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 36521509
apart from above what SuperTeco suggested please try to find "Set Default Route as this Gateway" and enable the option.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Accepted Solution

by:
janlani19 earned 0 total points
ID: 36575246
Sorry I have not gotten back sooner. Other projects going on.  

Well, I looked into the fotigate VPN settings and there were no DNS entries, just blanks.  So I put in Google DNS entries and we now have access to internet while VPN'ed in and also have access to the shared folders on the remote server.

Is using google's DNS server ip's a good idea?   In the past, I see that they were using our internet providers DNS entries, which act ok......  Any thoughts appreciated.
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 36575436
you should have you OWN dns server if not then ISP DNS Server.
0
 

Author Comment

by:janlani19
ID: 36576984
We are a small business with mostly roaming users, mainly using google apps.  There are no LDAP or dns servers on site just file servers.  Do you think the ISP dns is best or are the google 8.8.8.8 dns server address just as fine...???
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 36578409
if Google DNS is working fine for you then you can continue with same setting but ISP DNS could be a betetr option specially if your users are Mobile Users.
0
 

Author Comment

by:janlani19
ID: 36581429
A friend showed me a cool benchmark test tool from google that test the DNS servers near you for the fastest one.  -->  http://code.google.com/p/namebench/
Hope it helps.
0
 
LVL 33

Expert Comment

by:digitap
ID: 37693299
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question