Internet Access Over VPN

Scenario:


Internet browsing is blocked in one Branch office and users can only send and receive emails by using Microsoft outlook express. With the help of VPN they are accessing data residing on file server located at head office. Is there any way to access head office internet from branch office computer through VPN for a specific computer?.


Note:
There is no proxy server running at head office. internet is shared through sonic wall TZ210 Device.
jahangir303Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

AnuroopsunddCommented:
you can route all the traffic for the one machine to your head office. so this machine traffic will be routed through the VPN to HQ and then to internet.
jahangir303Author Commented:
Please give me some idea how to route traffic?  if you need any details regarding my network i can provide easily, thanks


do we need to user route add command on that specific machine?.
AnuroopsunddCommented:
as your networks are connected already....and your branch office have local internet you must be routing all internet traffic locally.
if you want to route the traffic of one machine over the VPN. on the gateway router your you can setup route-map .. see below

http://www.cisco.com/en/US/docs/ios/12_0/qos/configuration/guide/qcpolicy.html
Active Protection takes the fight to cryptojacking

While there were several headline-grabbing ransomware attacks during in 2017, another big threat started appearing at the same time that didn’t get the same coverage – illicit cryptomining.

AnuroopsunddCommented:
So policy routing will allow you to route traffic on the base of source...
http://www.velocityreviews.com/forums/t31147-how-can-i-route-based-on-src-ip-address-mask.html
jahangir303Author Commented:
I am using sonicwall tz210 device, so please guide me acordingly
AnuroopsunddCommented:
Just check for source based routing  in sonicwall docs...
AnuroopsunddCommented:
This can be done, but your users need to either be on differing subnets, or static IPs.

This is handled at the Routing Policy level. Create an Address Group for the subnets (or static IPs) you want routed by X2 instead of X1. Then go to the Routing tab. Create a new Routing Policy that states that anything from that one Address Group will egress through the X2 interface/IP. Set the Interface to X2.

http://serverfault.com/questions/298241/howto-make-sonicwall-use-a-specific-wan-interface-based-on-ip

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows XP

From novice to tech pro — start learning today.